Offensive Security
Offensive Security
Offensive Security
Offensive Security
About me / contact me
Penetration Testing with Kali
Note taking
Master your skills
OSCP
Information gathering
Gaining Access - Vulnerability Exploitation
Privilege Escalation
HTB
Active
Retired
10.10.10.9 - Bastard
10.10.10.3 - Lame - DistCC, SMB, SSH Reuse
10.10.10.4 - Legacy - WindowsXP samba
10.10.10.5 - Devel - Windows 7
10.10.10.7 - Beep - LFI, Shellshock, SUID
10.10.10.11 - Arctic - LFI, Win2008 Priv Esc
10.10.10.27 - Calamity - php command injection
10.10.10.46 - Apocalyst
10.10.10.51 - SOLID STATE - Apache James, SUID
10.10.10.63 - Jeeves - Jenkins WebServer, SeImpersonatePrivilege
10.10.10.84 - Poison - LFI (Log Poisoning)
VulnHub
Brainpan - 1 - Buffer Overflow
Web Vulnerabilities - OWASP TOP 10
SQL Injection
XXE - XML External Entity
Command Injection
Cross Site Scripting
Broken Authentication and Session Management
Insecure Direct Object References
Cross Site Request Forgery
Security Misconfiguration
Insecure Cryptographic Storage
Insufficient Transport Layer Protection
Other Web Vulnerabilities
Remote File Upload
Remote File Inclusion
Local File Inclusion
Personal Projects
WiFi Penetration Testing
Phishing attempts
Case of executing python projects through SilentTrinity
News
Operating System philosophy
Powered by GitBook

Retired

Here are the articles in this section:
10.10.10.9 - Bastard
10.10.10.3 - Lame - DistCC, SMB, SSH Reuse
Metasploitable like VM - back to old school
10.10.10.4 - Legacy - WindowsXP samba
Wannacry's main ingredient.
10.10.10.5 - Devel - Windows 7
ASPX reverse shell and Metasploit Enumeration
10.10.10.7 - Beep - LFI, Shellshock, SUID
Example of LFI and SUID vulnerabilities
10.10.10.11 - Arctic - LFI, Win2008 Priv Esc
ColdFusion JSP Shell Upload/MS10-092/MS16-014
10.10.10.27 - Calamity - php command injection
PHP code injection, Privilege Escalation through groups
10.10.10.46 - Apocalyst
10.10.10.51 - SOLID STATE - Apache James, SUID
Apache James exploitation and SUID binary privesc
10.10.10.63 - Jeeves - Jenkins WebServer, SeImpersonatePrivilege
10.10.10.84 - Poison - LFI (Log Poisoning)
Previous
10.10.10.121
Next
10.10.10.9 - Bastard
Last updated 2 years ago