SANS Kringlecon 2022 - Jolly CI/CD
Merry Christmas! Someone told me about SANS holiday hack challenge (KringleCon 2022!) https://www.sans.org/mlp/holiday-hack-challenge/ and I’ve been having a...
Posts by Category
CTF
HTB - Freelancer
This HTB challenge is great for learning SQL injection! While you could also do it easily with SQLmap, I prefered doing it with Manual approach. Though time ...
HTB - Emdee five for life
I enjoyed this challenge for 2 reasons: Learn how to use Curl Understand HTTP headers
TryHackMe - Willow writeup
This is a boot-to-root CTF from TryHackMe and the CTF can be found @ https://www.tryhackme.com/room/willow. Key lessons learnt here: RSA algorithm, writing p...
Vulnhub - Kioptrix: Level 1 (#1)
This is an updated 2019 Vulnhub walkthrough for Kioptrix level 1 that is beginners difficulty (great for newbies!). If you had read some OSCP preparation blo...
Vulnhub - The Necromancer (Lessons learnt for newbies!)
Had my first hands-on experience with a CTF machine (The Necromancer:1) at Vulnhub and here are the lessons/key tools learnt from clearing stages/flags. Vuln...
Learning
Building a Money Tracking Bot (Telegram)
TLDR: Learn python basics from https://www.hackerrank.com/ Learn building telegram bots NUS Hackers Hackerschool - Developing Telegram Bots using Python...
My OSCP Experience & Tips (I TRIED HARDER!!)
I TRIED HARDER! Passing Offensive Security Certified Professional (OSCP) is a milestone in my life and I hope to share my OSCP journey and hope it will help ...
What is Penetration Testing? What is Red Teaming?
I bought a book recently (via a redditor’s recommendation) The Hacker Playbook 3: Practical Guide To Penetration Testing by book author Peter Kim (a seasoned...
GeorgiaWeidman PenTestBook
Georgia Weidman’s PenTest book (Part 3)
I covered another few more chapters into Georgia Weidman’s Penetration Testing book (from chapter 5 up to chapter 8). The main take away for me in these few ...
Georgia Weidman’s PenTest book (Part 2)
Few more chapters into Georgia Weidman’s Penetration Testing book (up to chapter 4), I had setup the lab environment consisting all the VM in same closed sub...
Georgia Weidman’s PenTest book (Part 1)
After diving into reddits and blog after blogs on tips for starting out in Penetration Testing, this book Penetration Testing: A Hands-On Introduction to Hac...
OWASP-BWA
OWASP Broken Web Applications - Getting Started
After watching @NahamSec (Ben Sadeghipour) twitch interview with @Jhaddix (Jason Haddix), both legendary people in the bugbounty scene today, where Jason Had...