Home • Vulndev

29JanJanuary 29, 2022

ASP, Windows Containers, Responder & NoPAC – Anubis @ HackTheBox

We are solving Anubis, a 50-point windows machine on HackTheBox which involves an ASP template injection, windows containers, and stealing hashes with Responder. Later we'll escalate privileges using noPAC.

By xctCTFactive directory, asp, hackthebox, responder, windows

22JanJanuary 22, 2022

SSRF & Python Debugger – Forge @ HackTheBox

We are solving Forge, a medium difficulty Linux machine on HackTheBox which involves an SSRF & playing with the python debugger.

By xctCTFhackthebox, linux, pdb, ssrf

19JanJanuary 19, 2022

Protected: Lab – Baby Walkthrough

There is no excerpt because this is a protected post.

By xctCTF, Vulnlabactive directory, ldap, vulnlab, windows

16JanJanuary 16, 2022

Protected: Lab – Rainbow Walkthrough

There is no excerpt because this is a protected post.

By xctCTF, Vulnlabbinary exploitation, vulnlab, windows

15JanJanuary 15, 2022

XSS, Tab Nabbing & Rust Reversing – Developer @ HackTheBox

We are going to solve Developer, a pretty hard Linux machine on HackTheBox. It involves Cross-Site-Scripting, Tab Nabbing & reversing a rust binary.

By xctCTFreversing, rust, sentry, tab nabbing, xss

08JanJanuary 8, 2022

About Kerberos Silver Tickets

I always had difficulties understanding what Silver Tickets are and how they are used. Maybe this comes from the fact that they are rarely seen in labs. They can be really powerful though, so I'll be trying my best to describe my understanding of them in this post.

By xctWindows Internalsactive directory, silver ticket