Netcat (nc) Full Tutorial – Easy TCP/UDP Guide
Practical netcat (nc) guide for Linux: reverse shells, TCP/UDP connections, port scanning, file transfers, and key options for CTF and Pentesting.
nmap
nmap Tutorial – the Ultimate Network Scanner
Master nmap with thist tutorial, from basic host discovery, port and service scanning to more advanced techniques like firewall evasion
Solving Lookup – TryHackMe Challenge Writeup
Complete walkthrough of Lookup room on TryHackMe: form brute-forcing, elFinder CVE and 2 Linux misconfigurations lead us to the root flag.
Solving Basic Pentesting – TryHackMe Challenge Writeup
Full walkthrough of the TryHackMe Basic Pentesting room: web enumeration, SMB usernames, SSH access and SSH private key brute-force.
RootMe Writeup – Full TryHackMe CTF Solution
Full walkthrough of RootMe: reconnaissance, getting a PHP shell then a reverse shell, and elevating our privileges through a SUID misconfiguration
Corridor Writeup – TryHackMe IDOR Challenge
Full walkthrough of the Corridor Challenge on TryHackMe. We find the flag by exploiting IDOR through a MD5 id in the URL of the web app.
TryHackMe TakeOver Writeup – Subdomain Challenge
Full writeup of TakeOver from TryHackMe. Subdomain enumeration and TLS certificate inspection leads to the discovery of a secret subdomain
TryHackMe “Agent T” Writeup – Easy Challenge
Writeup of TryHackMe challenge “Agent T”. We exploit the backdoored version of PHP 8.1.0-dev to get Code Execution and read the flag.
Lazy Admin Writeup – TryHacKme Challenge
In this post, we solve the Lazy Admin CTF from TryHackMe by exploiting 2 CVE of SweetRice CMS and a sudo misconfiguration to get root.
Solving Pyrat – an Easy TryHackMe Challenge
Pyrat is an easy TryHackMe challenge where we exploit a Python code execution and use a .git folder to further compromise the server.