SSRF into Responder, gMSA Password & SeRestorePrivilege – Heist @ PG Practice

We are going to solve Atom, a 30-point machine on HackTheBox where we'll analyze an electron app and exploit its... read more

My video about Spectra, a 20-point machine on HackTheBox that involves admin access to a WordPress site, allowing us to... read more

We are going to solve Laboratory, which is an easy linux machine on HackTheBox with a CVE on Gitlab for... read more

Monteverde is a 30-point Windows machine on HackTheBox that involves some LDAP and SMB enumeration to get the user flag.... read more

In this blog post, we will solve the Windows userland challenge that Blue Frost Security published for Ekoparty 2022. read more

Helpline is a really fun box on hackthebox.eu, which I was lucky enough to get system first blood on :)... read more

Bankrobber is a 50-point machine on hackthebox that involves exploiting a cross site scripting vulnerability to gain access to an... read more

Solving Crossfit, a 50-point Linux machine on HackTheBox which involves a lot of cross-site scripting, a command-injection, and finally some... read more

Sauna is a 20-point Windows Machine on HackTheBox. For user, we bruteforce usernames and then use ASREP-Roasting to obtain the... read more

Curling is one of the easier boxes on hackthebox.eu, featuring getting a shell on joomla via template editing, getting a... read more