Shinra & Wutai Videosxct
I'm linking the playlists for both labs here to avoid single posts for every video. Check out https://vulnlab.com if you want to try them out!
VL Shinra Part 4 – Reverse Engineering, Binary Exploitation & Ansiblexct
This is part four of the Shinra series. We will get to access to a linux server via ssh, exploit a small authenticator app & use ansible to move to the next box.
VL Shinra Part 3 – Initial Payload Design, Host Enumeration & getting SYSTEMxct
This is the third video of the Shinra series. We will get a shell on Ashleighs machine & escalate privileges.
VL Shinra Part 2 – Enumerate, Enumerate, Enumerate!xct
This is the second video of the Shinra series. Before setting foot onto any of the network's internal machines, we are going to spend a bit of time enumerating various things from our machine
Real World CTF 2023 – NonHeavyFTPxct
This is a short writeup on the "NonHeavyFTP" challenge from Real World CTF 2023. This was one of the easier challenges with the goal of exploiting LightFTP in Version 2.2 (the latest one on github at the time). I ended up with a file-read vulnerability that allowed to read the...
VL Shinra Part 1 – SQLi, Command Injection & Hash Crackingxct
This is the first video of a series about Shinra, a virtual company in a private red team lab. We will conduct a full pentest on Shinra and explore various topics along the way.