Archives
- 23 Feb HackTheBox Interpreter Writeup
- 11 Feb CVE-2025-49132 Pterodactyl Panel - Unauthenticated Remote Code Execution (RCE)
- 01 Feb HackTheBox WingData Writeup
- 01 Feb HackTheBox Pterodactyl Writeup
- 01 Feb HackTheBox Facts Writeup
- 21 Jan Python __pycache__ Poisoning Privilege Escalation (UNCHECKED_HASH)
- 21 Jan HackTheBox Browsed Writeup
- 03 Nov HackTheBox MonitorsFour Writeup
- 03 Nov HackTheBox NanoCorp Writeup
- 03 Nov HackTheBox Giveback Writeup
- 31 Oct Cross Site Scripting (XSS) Vulnerabilities
- 28 Oct Cross Origin Resource Sharing (CORS) Vulnerabilities
- 27 Oct Cross Site Request Forgery (CSRF) Vulnerabilities
- 26 Oct Server Side Request Forgery (SSRF) Vulnerabilities
- 26 Oct HackTheBox Conversor Writeup
- 25 Oct Web Application Access Control Vulnerabilities
- 14 Oct HackTheBox CPTS Exam Report Writing using Sysreptor (Detailed Guide)
- 05 Oct HackTheBox Signed Writeup
- 05 Oct HackTheBox DarkZero Writeup
- 04 Oct HackTheBox Certificate Writeup
- 28 Sep HackTheBox Puppy Writeup
- 20 Sep HackTheBox Fluffy Writeup
- 19 Sep Web Application Race Conditions Vulnerabilities
- 17 Sep Web Application Information Disclosure
- 16 Sep Web Application Business Logic Vulnerabilites
- 15 Sep Web Application Authentication Vulnerabilites
- 07 Sep CVE-2025-32433-Erlang-OTP-SSH-Unauthenticated-RCE
- 23 Aug Privilege Escalation PoC: Terraform sudo Exploit
- 12 Aug CVE-2024-47533 - Cobbler XMLRPC Authentication Bypass RCE Exploit POC
- 08 Aug CVE-2025-24893 - XWiki Unauthenticated RCE Exploit POC
- 08 Aug CVE-2024-32019 - Netdata ndsudo PATH Vulnerability Exploit (LPE to Root)
- 15 Jul CVE-2025-27591 - Privilege Escalation via Writable Symlink in below