Posts by Tag

• hash-cracking 6
• suid-abuse 6
• password-bruteforcing 5
• file-upload-abuse 4
• smb-enum 4
• rce 4
• sqli 2
• lfi 2
• docker-escape 2
• rshell-escape 2
• pth 2
• kerberos-user-enum 2
• sudo-abuse 2
• cheatsheets 2
• xss 1
• csrf 1
• cookie-hijacking 1
• race-condition 1
• ssh-key-trust-abuse 1
• qdPM-9.2-password-exposure 1
• path-hijacking 1
• spip-4.2.0-rce 1
• csrf-token-discovery 1
• rid-bruteforcing 1
• kerberoasting 1
• user-agent-rce 1
• steganography 1
• cron-abuse 1
• as-rep-roasting 1
• ntds-creds-extraction 1
• idor 1
• specific-binary-abuse 1
• gpo-abuse 1
• oscommerce-2.3.4-rce 1
• wp-user-enum 1

hash-cracking

THM - VulnNet: Active

November 08, 2025  

smb-enum kerberos-user-enum hash-cracking specific-binary-abuse gpo-abuse

THM - Attacktive Directory

November 06, 2025  

kerberos-user-enum as-rep-roasting hash-cracking smb-enum ntds-creds-extraction pth

THM - Easy Peasy

November 02, 2025  

hash-cracking steganography cron-abuse

THM - Soupedecode 01

November 01, 2025  

smb-enum hash-cracking rid-bruteforcing kerberoasting pth

VH - Infovore: 1

October 10, 2025  

file-upload-abuse lfi race-condition hash-cracking ssh-key-trust-abuse docker-escape

VH - MyExpense: 1

October 08, 2025  

xss csrf cookie-hijacking sqli hash-cracking

Back to Top ↑

suid-abuse

HTB - Nibbles

January 31, 2026  

file-upload-abuse rce sudo-abuse suid-abuse

THM - Billing

January 07, 2026  

lfi rce sudo-abuse suid-abuse

THM - Mr Robot

December 17, 2025  

wp-user-enum password-bruteforcing file-upload-abuse rce suid-abuse

THM - Brooklyn Nine Nine

November 02, 2025  

password-bruteforcing suid-abuse

THM - Publisher

October 31, 2025  

spip-4.2.0-rce csrf-token-discovery docker-escape rshell-escape suid-abuse

VH - ICA: 1

October 11, 2025  

qdPM-9.2-password-exposure password-bruteforcing suid-abuse path-hijacking

Back to Top ↑

password-bruteforcing

THM - Mr Robot

December 17, 2025  

wp-user-enum password-bruteforcing file-upload-abuse rce suid-abuse

THM - Pickle Rick

November 09, 2025  

password-bruteforcing rce

THM - Brooklyn Nine Nine

November 02, 2025  

password-bruteforcing suid-abuse

THM - Basic Pentesting

October 29, 2025  

smb-enum password-bruteforcing

VH - ICA: 1

October 11, 2025  

qdPM-9.2-password-exposure password-bruteforcing suid-abuse path-hijacking

Back to Top ↑

file-upload-abuse

HTB - Nibbles

January 31, 2026  

file-upload-abuse rce sudo-abuse suid-abuse

THM - Mr Robot

December 17, 2025  

wp-user-enum password-bruteforcing file-upload-abuse rce suid-abuse

THM - Blueprint

November 10, 2025  

oscommerce-2.3.4-rce file-upload-abuse

VH - Infovore: 1

October 10, 2025  

file-upload-abuse lfi race-condition hash-cracking ssh-key-trust-abuse docker-escape

Back to Top ↑

smb-enum

THM - VulnNet: Active

November 08, 2025  

smb-enum kerberos-user-enum hash-cracking specific-binary-abuse gpo-abuse

THM - Attacktive Directory

November 06, 2025  

kerberos-user-enum as-rep-roasting hash-cracking smb-enum ntds-creds-extraction pth

THM - Soupedecode 01

November 01, 2025  

smb-enum hash-cracking rid-bruteforcing kerberoasting pth

THM - Basic Pentesting

October 29, 2025  

smb-enum password-bruteforcing

Back to Top ↑

rce

HTB - Nibbles

January 31, 2026  

file-upload-abuse rce sudo-abuse suid-abuse

THM - Billing

January 07, 2026  

lfi rce sudo-abuse suid-abuse

THM - Mr Robot

December 17, 2025  

wp-user-enum password-bruteforcing file-upload-abuse rce suid-abuse

THM - Pickle Rick

November 09, 2025  

password-bruteforcing rce

Back to Top ↑

sqli

THM - Light

November 01, 2025  

sqli

VH - MyExpense: 1

October 08, 2025  

xss csrf cookie-hijacking sqli hash-cracking

Back to Top ↑

lfi

THM - Billing

January 07, 2026  

lfi rce sudo-abuse suid-abuse

VH - Infovore: 1

October 10, 2025  

file-upload-abuse lfi race-condition hash-cracking ssh-key-trust-abuse docker-escape

Back to Top ↑

docker-escape

THM - Publisher

October 31, 2025  

spip-4.2.0-rce csrf-token-discovery docker-escape rshell-escape suid-abuse

VH - Infovore: 1

October 10, 2025  

file-upload-abuse lfi race-condition hash-cracking ssh-key-trust-abuse docker-escape

Back to Top ↑

rshell-escape

THM - Agent T

November 02, 2025  

user-agent-rce rshell-escape

THM - Publisher

October 31, 2025  

spip-4.2.0-rce csrf-token-discovery docker-escape rshell-escape suid-abuse

Back to Top ↑

pth

THM - Attacktive Directory

November 06, 2025  

kerberos-user-enum as-rep-roasting hash-cracking smb-enum ntds-creds-extraction pth

THM - Soupedecode 01

November 01, 2025  

smb-enum hash-cracking rid-bruteforcing kerberoasting pth

Back to Top ↑

kerberos-user-enum

THM - VulnNet: Active

November 08, 2025  

smb-enum kerberos-user-enum hash-cracking specific-binary-abuse gpo-abuse

THM - Attacktive Directory

November 06, 2025  

kerberos-user-enum as-rep-roasting hash-cracking smb-enum ntds-creds-extraction pth

Back to Top ↑

sudo-abuse

HTB - Nibbles

January 31, 2026  

file-upload-abuse rce sudo-abuse suid-abuse

THM - Billing

January 07, 2026  

lfi rce sudo-abuse suid-abuse

Back to Top ↑

cheatsheets

Exploitation Cheat Sheet

January 07, 2026  

cheatsheets

Enumeration Cheat Sheet

January 07, 2026  

cheatsheets

Back to Top ↑

xss

VH - MyExpense: 1

October 08, 2025  

xss csrf cookie-hijacking sqli hash-cracking

Back to Top ↑

csrf

VH - MyExpense: 1

October 08, 2025  

xss csrf cookie-hijacking sqli hash-cracking

Back to Top ↑

cookie-hijacking

VH - MyExpense: 1

October 08, 2025  

xss csrf cookie-hijacking sqli hash-cracking

Back to Top ↑

race-condition

VH - Infovore: 1

October 10, 2025  

file-upload-abuse lfi race-condition hash-cracking ssh-key-trust-abuse docker-escape

Back to Top ↑

ssh-key-trust-abuse

VH - Infovore: 1

October 10, 2025  

file-upload-abuse lfi race-condition hash-cracking ssh-key-trust-abuse docker-escape

Back to Top ↑

qdPM-9.2-password-exposure

VH - ICA: 1

October 11, 2025  

qdPM-9.2-password-exposure password-bruteforcing suid-abuse path-hijacking

Back to Top ↑

path-hijacking

VH - ICA: 1

October 11, 2025  

qdPM-9.2-password-exposure password-bruteforcing suid-abuse path-hijacking

Back to Top ↑

spip-4.2.0-rce

THM - Publisher

October 31, 2025  

spip-4.2.0-rce csrf-token-discovery docker-escape rshell-escape suid-abuse

Back to Top ↑

csrf-token-discovery

THM - Publisher

October 31, 2025  

spip-4.2.0-rce csrf-token-discovery docker-escape rshell-escape suid-abuse

Back to Top ↑

rid-bruteforcing

THM - Soupedecode 01

November 01, 2025  

smb-enum hash-cracking rid-bruteforcing kerberoasting pth

Back to Top ↑

kerberoasting

THM - Soupedecode 01

November 01, 2025  

smb-enum hash-cracking rid-bruteforcing kerberoasting pth

Back to Top ↑

user-agent-rce

THM - Agent T

November 02, 2025  

user-agent-rce rshell-escape

Back to Top ↑

steganography

THM - Easy Peasy

November 02, 2025  

hash-cracking steganography cron-abuse

Back to Top ↑

cron-abuse

THM - Easy Peasy

November 02, 2025  

hash-cracking steganography cron-abuse

Back to Top ↑

as-rep-roasting

THM - Attacktive Directory

November 06, 2025  

kerberos-user-enum as-rep-roasting hash-cracking smb-enum ntds-creds-extraction pth

Back to Top ↑

ntds-creds-extraction

THM - Attacktive Directory

November 06, 2025  

kerberos-user-enum as-rep-roasting hash-cracking smb-enum ntds-creds-extraction pth

Back to Top ↑

idor

THM - Corridor

November 08, 2025  

idor

Back to Top ↑

specific-binary-abuse

THM - VulnNet: Active

November 08, 2025  

smb-enum kerberos-user-enum hash-cracking specific-binary-abuse gpo-abuse

Back to Top ↑

gpo-abuse

THM - VulnNet: Active

November 08, 2025  

smb-enum kerberos-user-enum hash-cracking specific-binary-abuse gpo-abuse

Back to Top ↑

oscommerce-2.3.4-rce

THM - Blueprint

November 10, 2025  

oscommerce-2.3.4-rce file-upload-abuse

Back to Top ↑

wp-user-enum

THM - Mr Robot

December 17, 2025  

wp-user-enum password-bruteforcing file-upload-abuse rce suid-abuse

Back to Top ↑