THM: tomghost walkthru
You can find the training room here. As usual, we ran NMAP and wFuzz to gather as much information as we can about the target. With NMAP we get our […]
Exploit Confluence – CVE-2022-2613
On the 30th May of 2022, the security form Volexity identified a Remote Code Execution vulnerability at Atlassian’s Confluence. NIST entry can be found here. In the following, we will explore and […]
Fix Rasberry Pi issue – no video output after boot
A few days ago I ran into an error while setting up a Rasberry Pi for a 4K-TV. The problem was that the video signal aborted after the pi os […]
THM: ToolsRus walkthru
You can find the training room here. At the beginning as usal we try to get as much information as we can from the target. For this we are using […]
THM: Brooklyn Nine Nine walkthru
You can find the training room here. As usual first run our basic recon scans Nmap and fuzz to get more information about the target and the services which are […]
THM: LazyAdmin walkthru
You can find the training room here. We run our basic scans to find open ports and directories on the target. We found a open SSH port (22) and a […]
Reset Root-Password using GRUB
Imagin you forgot your root password after a long vacation at work or you are new to a company and need to get care of old systems with no known […]
THM: Git Happens walkthru
You can find the room here. First of all we run nmap and scan for open ports and services. I also tried a directory scan with gobuster but it cant […]
THM: Wonderland walkthru
It says follow the white rabbit, so lets go. Looking around the website while checking the sourcecode we found the directory for the pictures. Lets move to this and check […]
THM: Startup walkthru
After the mashine is deployed we check the source-code of the website but here is nothing interesting to find. So let’s move forward with our basic procedere run nmap and […]