Authentication plays a critical role in the security of any system as it prevents unauthorized access & misuse of resources, it is especially important in Pentesting. In Windows/Active Directory, several authentication methods are available, each with its strengths and weaknesses. In this blog post, we will go through the two…

A very common and easy attack that provides user credentials stored in SYSVOL share that can be used to get a shell or escalate privileges. Background: Group Policy Preferences (GPP) allowed administrators to create domain policies with embedded credentials. Wait, but what is GPP? Group Policy Preferences is a collection of…

Vulnerability Analysis & PoC for the Apache Tomcat — CGIServlet enableCmdLineArguments | Remote Code Execution All the code python script and the nc.exe application is available at : https://github.com/jaiguptanick/CVE-2019-0232 Video PoC available at HERE. Details Apache Tomcat has a vulnerability in the CGI Servlet, which can be exploited to achieve remote…

Walkthrough of Overpass — Tryhackme Overpass — Tryhackme Walkthrough Here is a walkthrough of the TryHackMe room “Overpass.” If you haven’t already completed the challenge, you can do so here. Hello, today we are going to solve an exciting room Overpass, which is quite different for me than other rooms. It is worth solving…

HSCTF 2020 writeups for web category. These are all the writeups of web challenges in HSCTF7. Blurry Eyes I can’t see :( https://blurry-eyes.web.hsctf.com

Sharky CTF 2020 Walkthrough for web category — XXExternalXX One of your customer all proud of his new platform asked you to audit it. To show him that you can get information on his server, he hid a file “flag.txt” at the server’s root. xxexternalxx.sharkyctf.xyz The name of the challenge clearly…

Dawg CTF 2020 writeups, solution, code snippets, notes, scripts…. UMBC Cyber Defense — can it be breached? Is the shield for keeping things in or keeping things out? https://clearedge.ctf.umbccd.io/ The website has a shield image as given in the challenge description as a hint. Downloading and Opening the image on the Stegsolve tool give us the flag.

CTFlearn (Capture The Flag) writeups,solutions, code snippets, notes, scripts for beginners web(easy).. Basic Injection See if you can leak the whole database. The flag is in there somewhere… https://web.ctflearn.com/web4/

CTFlearn (Capture The Flag) writeups for cryptography - Easy Catagory Character Encoding In the computing industry, standards are established to facilitate information interchanges among American coders. Unfortunately, I’ve made communication a little bit more difficult. Can you figure this one out? …