Welcome to my Webpage!
Everything about CyberSecurity / Other computer stuff
Time
ยท โ˜• 9 min read ยท โœ๏ธ M4t35Z
My HackTheBox Time writeup (Jackson rce --> Weak permissions)
Time
Overpass3 - Hosting
ยท โ˜• 9 min read ยท โœ๏ธ M4t35Z
dirfuzz --> backup --> gpg --> creds --> ftp --> pw reuse --> nfs
Overpass3 - Hosting
Feline
ยท โ˜• 12 min read ยท โœ๏ธ M4t35Z
A box featuring java deserialization multiple CVE's and a docker privesc
Feline
The Great Escape
ยท โ˜• 14 min read ยท โœ๏ธ M4t35Z
robots --> backup --> dev api --> command injection --> injection --> git log --> port knocking --> docker -H
The Great Escape
Overpass2 - hacked
ยท โ˜• 4 min read ยท โœ๏ธ M4t35Z
A box about pcap analysis and a SUID binary
Overpass2 - hacked
Archangel
ยท โ˜• 8 min read ยท โœ๏ธ M4t35Z
A box about getting an RCE via LFI and Log Poisoning. Then abusing a cronjob that used a file with weak permissions. And then analysing a suid binary which used relative paths instead of absolute paths which made it vulnerable to path injection.
Archangel
hackerNote
ยท โ˜• 5 min read ยท โœ๏ธ M4t35Z
A box about user enumeration(I did it with the hint fuctionality), brute forcing and abusing a well-known sudo cve (pwfeedback bof)
hackerNote
Overpass
ยท โ˜• 7 min read ยท โœ๏ธ M4t35Z
TryHackMe Overpass writeup
Overpass
Omni
ยท โ˜• 6 min read ยท โœ๏ธ M4t35Z
HackTheBox Omni writeup. A Windows IOT box, with PSCredential encrypted flags
Omni
Bot Takeover 0x1
ยท โ˜• 5 min read ยท โœ๏ธ M4t35Z
Command injection in a discord BOT