VOIDREAD

Medium Linux box using blind XSS for admin session theft, LFI to source read, ImageMagick command injection for RCE, pyAesCrypt backup decryption, and Charcol cron abuse for root.

HTB . 13

Outbound - HTB

Outbound is an easy Linux machine with assumed-breach mail credentials, Roundcube deserialization RCE, session/DB credential recovery, and a symlink-based privilege escalation via below logs.

AD . 01

ACLs/ACEs permissions

ACLs/ACEs permissions techniques and commands for Active Directory security assessment.

AD . 06

Kerberos Delegation

Kerberos Delegation techniques and commands for Active Directory security assessment.