Web Application

Hack The Box Certified Bug Bounty Hunter (HTB CBBH)

A review of the CBBH course and exam.

Malware Dev

Import Address Tables

Hiding IAT entries to evade detection.

Infrastructure

802.11 Wireless Attacks

Ways of gaining access to WPA-PSK networks.

Infrastructure

Cobalt Strike

Getting started with Cobalt Strike.

Web Application

Local File Inclusion (LFI) Attacks

Exploiting LFI vulnerabilities in web applications.

Web Application

Flask Session Cookies

Decoding Flask signed session cookies.

Web Application

Server Side Template Injection (SSTI)

SSTI attacks against Python Flask applications.

Exploit Dev

Cyber Apocalypse 2023

Cyber Apocalypse CTF 2023 challenge writeups.

Malware Dev

Malicious Nim Code

Using Nim to write some simple tools.

Malware Dev

System Call Execution

Writing a process injection tool using direct system calls.

Security Engineering

Headless Linux Disk Encryption

Unlocking LUKS encrypted disks remotely.

Exploit Dev

Windows x64 Reverse Shellcode

Reverse shells in x64 assembly.