PENETRATION_TESTING_WRITEUPS
SERIES & PLAYLISTS
ALL WRITEUPS
TryHackMe | Pickle Rick CTF Writeup
This writeup documents the steps taken to solve the Pickle Rick room on TryHackMe. The challenge focuses on basic web reconnaissance, enumeration, command execution, and privilege escalation.
READ_WRITEUPRed Team Threat Intel
Threat Intelligence (TI) or Cyber Threat Intelligence (CTI) is the information, or TTP (Tactics Techniques and Procedures), that is commonly used to help detection.
READ_WRITEUPTryHackMe | FowSniff CTF Writeup
This writeup documents the steps taken to solve the FowSniff machine on TryHackMe. The challenge involves reconnaissance, OSINT investigation, credential cracking, and privilege escalation to obtain root access.
READ_WRITEUPAbusing Windows Internals
# Abusing Windows Internals ### Abusing Processes A process represents a running program and contains components like its virtual memory space, executable code, open handles, security context, process ID, and threads.
READ_WRITEUPRed Team OPSEC
OPSEC, also known as Operations Security, is primarily defined as a systematic process which denies information to adversaries regarding capabilities and intentions by identifying, controlling and protecting generally unclassed evidence of the planning and execution of sensitive activities.
READ_WRITEUPWeaponization
# Weaponization ### Introduction In the Cyber Kill Chain model, Weaponization is the second stage.
READ_WRITEUPEnumeration
# Enumeration ### Purpose The goal of post-exploitation enumeration is to gather information about the compromised host and the surrounding network.
READ_WRITEUPTryHackMe | Brute It CTF Writeup
This writeup documents the steps taken to solve the Brute It room on TryHackMe. The challenge focuses on web enumeration, brute forcing credentials, cracking hashes, and performing privilege escalation on a Linux system.
READ_WRITEUPTryHackMe | Whiterose CTF Writeup
This writeup documents the steps taken to solve the Whiterose room on TryHackMe. The challenge involves web enumeration, exploiting a Server-Side Template Injection (SSTI) vulnerability, and performing privilege escalation to obtain root access.
READ_WRITEUPRed Team Fundamentals
A vulnerability assessment focuses on scanning hosts for vulnerabilities as individual entities so that security deficiencies can be Identified and effective security measures can be deployed to protect the network in a prioritized manner.
READ_WRITEUPWindows Internals
# Windows Internals ### Windows Processes A process represents the execution of a program.
READ_WRITEUPWindows Privilege Escalation
Simply put, privilege escalation consists of using given access to a host with "user A" and leveraging it to gain access to "user B" by abusing a weakness in the target system. While we will usually want "user B" to have administrative rights, there might be situations where we'll need to escalate into other unprivileged accounts before actually gaining administrative privileges.
READ_WRITEUPRed Team Recon
The tasks of this room cover the following topics:Types of reconnaissance activities
READ_WRITEUPIntroduction to Antivirus
# Introduction to Antivirus ### AV Static Detection Static detection is the oldest and simplest approach to antivirus technology.
READ_WRITEUPIntroduction to Windows API
Subsystem and Hardware InteractionMany programs need to access or modify Windows subsystems or hardware, but are restricted in order to maintain system stability. To bridge this gap, Microsoft introduced the Win32 API, a library that acts as an interface between user-mode applications and the kernel.
READ_WRITEUPSignature Evasion
# Signature Evasion ### Signature Identification When working with signatures in malware analysis or AV testing, the key idea is that AV engines look for specific byte patterns within a binary.
READ_WRITEUPPassword Attacks
# Password Attacks ### Password Attacking Techniques In this room, we will discuss the techniques that could be used to perform password attacks.
READ_WRITEUPAV Evasion - Shellcode
# AV Evasion - Shellcode ### PE Structure PE (Portable Executable), is a data structure that holds information necessary for files.
READ_WRITEUPPhishing
Phishing is closely related to the term social engineering.
READ_WRITEUPThe Lay of the Land
# The Lay of the Land ### Network Infrastructure When a red team gains initial access to an unknown network, the first step is enumeration: identifying the target system, its services, and the surrounding network environment.
READ_WRITEUPTryHackMe | Disgruntled CTF Writeup
This writeup documents the steps taken to solve the Disgruntled room on TryHackMe. The challenge focuses on Linux forensics, analyzing logs and system artifacts to determine what actions a malicious insider performed on the machine.
READ_WRITEUPObfuscation Principles
# Obfuscation Principles ### Obfuscation Principles Obfuscation is a technique widely used across software development to protect intellectual property (IP) and proprietary information.
READ_WRITEUPTryHackMe | RootMe CTF Writeup
This writeup documents the steps taken to solve the RootMe room on TryHackMe. The challenge focuses on web enumeration, exploiting a file upload vulnerability to gain a reverse shell, and performing privilege escalation on a Linux system.
READ_WRITEUPIntro to C2
# Intro to C2 ### Intro Working with C2 frameworks also requires general experience with the Metasploit Framework, and some general familiarity with Red Teaming and exploiting vulnerable virtual machines.
READ_WRITEUPTryHackMe | Blue CTF Writeup
This writeup documents the steps taken to solve the Blue room on TryHackMe. The challenge focuses on exploiting the MS17-010 (EternalBlue) vulnerability using Metasploit to gain system access on a Windows machine.
READ_WRITEUP