Logging - HTB
Logging starts with a routine Active Directory assessment, where seemingly ordinary artifacts and a bit of intuition gradually reveal a chain of misconfigurations leading to full compromise.
Silentium - HTB
An easy Linux machine featuring web enumeration, password reset vulnerability, container escaping, and internal service access.
DevArea - HTB
A medium-difficulty Linux machine featuring SOAP services, middleware exploitation, and multiple privilege escalation vectors.
Kobold - HTB
An easy-difficulty Linux machine featuring multiple web vulnerabilities.
Imagery - HTB
Medium Linux box using blind XSS for admin session theft, LFI to source read, ImageMagick command injection for RCE, pyAesCrypt backup decryption, and Charcol cron abuse for root.
Puppy - HTB
A medium Windows Active Directory machine featuring SMB enumeration, KeePass database attack, privilege delegation abuse, and DPAPI credential theft for domain compromise.
Certipy Shadow Credentials (KeyCredentialLink Abuse)
Covert lateral movement by injecting shadow credentials into a target user's object.
Fries - HTB
Hard Windows AD + container lab. Abuse pgAdmin for container RCE, pivot to internal services, capture LDAP creds, extract gMSA secrets, then ADCS ESC7 to Administrator.