Shinra & Wutai Videos
xct2023-05-05T14:54:13+00:00I'm linking the playlists for both labs here to avoid single posts for every video. Check out https://vulnlab.com if you want to try them out!
VL Shinra Part 4 – Reverse Engineering, Binary Exploitation & Ansible
xct2023-01-28T09:25:14+00:00This is part four of the Shinra series. We will get to access to a linux server via ssh, exploit a small authenticator app & use ansible to move to the next box.
VL Shinra Part 3 – Initial Payload Design, Host Enumeration & getting SYSTEM
xct2023-01-18T17:06:46+00:00This is the third video of the Shinra series. We will get a shell on Ashleighs machine & escalate privileges.
VL Shinra Part 2 – Enumerate, Enumerate, Enumerate!
xct2023-01-18T17:07:53+00:00This is the second video of the Shinra series. Before setting foot onto any of the network's internal machines, we are going to spend a bit of time enumerating various things from our machine
Real World CTF 2023 – NonHeavyFTP
xct2023-01-08T14:08:29+00:00This is a short writeup on the "NonHeavyFTP" challenge from Real World CTF 2023. This was one of the easier challenges with the goal of exploiting LightFTP in Version 2.2 (the latest one on github at the time). I ended up with a file-read vulnerability that allowed to read the...
VL Shinra Part 1 – SQLi, Command Injection & Hash Cracking
xct2023-01-18T17:07:44+00:00This is the first video of a series about Shinra, a virtual company in a private red team lab. We will conduct a full pentest on Shinra and explore various topics along the way.