timewrap: A Handy faketime Alias Using NTP
timewrap: Faketime + NTP Helper for AD Lab Environments. In Active Directory labs, we often need to manipulate system time to: Replay or inspect expired c...
Posts by Category
hacking
Web Shell via Polyglot ZIP + PDF Upload Bypass
Technique 1: Null Byte Bypass (\x00) Create a fake .pdf that contains a valid header, and append a .php shell: ❯ cat shell.php <?php if(isset($_GET['c...
SeManageVolumePrivilege Exploit
Abusing the SeManageVolumePrivilege allows low-privileged users to perform raw volume access — often used for LSASS dumping. However, a more stealthy and dev...
Certipy Shadow Credentials (KeyCredentialLink Abuse)
Shadow Credentials are a stealthy method of impersonating users in Active Directory environments by injecting a forged certificate identity into the target a...
Linux Privilege Escalation via Sudo Misconfiguration
Sudo misconfigurations on Linux systems provide a common vector for privilege escalation. Attackers exploit overly permissive sudo rules to gain root-level a...
CEH v13 Engage
CEH v13 Engage CEH Engage Part 1 Challenge 1: An attacker conducted footprinting on a web application and saved the resulting report Dumpster.xlsx in the doc...
linux
timewrap: A Handy faketime Alias Using NTP
timewrap: Faketime + NTP Helper for AD Lab Environments. In Active Directory labs, we often need to manipulate system time to: Replay or inspect expired c...
Linux Privilege Escalation via Sudo Misconfiguration
Sudo misconfigurations on Linux systems provide a common vector for privilege escalation. Attackers exploit overly permissive sudo rules to gain root-level a...
CEH v13 Engage
CEH v13 Engage CEH Engage Part 1 Challenge 1: An attacker conducted footprinting on a web application and saved the resulting report Dumpster.xlsx in the doc...
windows
SeManageVolumePrivilege Exploit
Abusing the SeManageVolumePrivilege allows low-privileged users to perform raw volume access — often used for LSASS dumping. However, a more stealthy and dev...
Certipy Shadow Credentials (KeyCredentialLink Abuse)
Shadow Credentials are a stealthy method of impersonating users in Active Directory environments by injecting a forged certificate identity into the target a...
privilege escalation
Linux Privilege Escalation via Sudo Misconfiguration
Sudo misconfigurations on Linux systems provide a common vector for privilege escalation. Attackers exploit overly permissive sudo rules to gain root-level a...
adcs
Back to Top ↑virtualization
Enable AVX/AVX2 Support in Kali VM on VirtualBox
Enabling AVX/AVX2 in Kali Linux VM on VirtualBox (from Windows Host)
avx
Enable AVX/AVX2 Support in Kali VM on VirtualBox
Enabling AVX/AVX2 in Kali Linux VM on VirtualBox (from Windows Host)
kali
Enable AVX/AVX2 Support in Kali VM on VirtualBox
Enabling AVX/AVX2 in Kali Linux VM on VirtualBox (from Windows Host)