HTB — Interface A detailed walkthrough for solving Interface on HTB. The box contains vulnerability CVE-2022–28368 RCE on Dompdf and privilege escalation through arithmetic expression injection on...

HTB — Investigation A detailed walkthrough for solving Ambassador Box on Hack The Box. The box contains vulnerability like Arbitrary File Read CVE-2021–43798, weak encryption and Remote Code Execu...

HTB — BroScience. A detailed walkthrough for solving BroScience Box on HTB. The box contains vulnerability like Path Traversal and PHP Deserialization from where we can have low priv access. Enume...

I was solving one of the active box in HTB where I encountered some interesting Deserialization vulnerability. Although I managed to solve the box, I was more curious about the exploitation of dese...

HTB — Mentor A detailed walkthrough for solving Mentor Box on HTB. The box contains vulnerability like information disclosure in SNMP, Command Injection, Hardcoded credentials and privilege escalat...

Subdoman Enumeration at first Subfinder Configure the necessary API Keys on ~/.config/subfinder/provider-config.yaml subfinder -d domainname.com -o subfinderoutput # Active Scanning subfi...

HTB — Forgot. The detailed walkthrough for solving Forgot on Hack The Box. The box contains vulnerability like host header injection, cache deception, hardcoded credentials and Code injection in `s...

One of the most frequently acknowledged vulnerabilities in bug bounty programs for Android and iOS apps is related to DeepLink, which can be exploited remotely. However, it should be noted that att...

HTB — Ambassador A detailed walkthrough for solving Ambassador Box on Hack The Box. The box contains vulnerability like Arbitrary File Read CVE-2021–43798, weak encryption and Remote Code Executio...

cloudGoatAWS Configure the profile aws configure --profile <profile-name> IAM Privilege Escalation by Rollback Objective: Enumerate IAM policy versions and roll back to a previous ve...