Home » Threads

Web Exploitation

HackTheBox - Forge

Bypass SSRF filters using domain redirection and abusing Python PDB

Oct 15, 2022  ·  9 min read
linux ssrf vhost ffuf

HackTheBox - Secret

Secret starts with analyzing web source to recover a secret token from older commit. The secret is …

Sep 28, 2022  ·  12 min read
linux core-dump jwt go

HackTheBox - BountyHunter

BountyHunter features a website that is vulnerable to XXE attack. Exploiting it allows me to …

Nov 22, 2021  ·  7 min read
linux arbitrary-file-read xxe code-injection

H@cktivitycon 2021 - Web

Another late CTF writeups for H@cktivitycon 2021 web category.

Oct 09, 2021  ·  11 min read
default-credentials ssrf command-injection crlf

HackTheBox - Validation

Second-order SQL injection

Sep 24, 2021  ·  6 min read
linux sql-injection password-reuse

HackTheBox - Schooled

Moodle exploitation using CVEs

Sep 16, 2021  ·  11 min read
freebsd cve-2020-25627 cve-2020-14321 moodle

HackTheBox - Gobox

SSTI in Golang, abuse S3 bucket, and NGINX backdoor

Sep 12, 2021  ·  15 min read
linux s3 aws localstack

HackTheBox - Cereal (User)

Chaining XSS, SSRF, and deserialization vulnerabilities to get RCE

Jun 09, 2021  ·  13 min read
windows recover-git dotnet csharp

HackTheBox - Bucket

Pentesting against simulated AWS S3 Bucket

Apr 24, 2021  ·  14 min read
linux aws localstack s3

HackTheBox - Magic

SQLi for login bypass and embed webshell to an image file

Apr 09, 2021  ·  6 min read
linux sql-injection exiftool upload-bypass