Short story of a misadventure at a Korean Barbecue restaurant which lead to the discovery of a Cross-Site Scripting vulnerability.

Read More

Leveraging Google AMP to exploit an Open Redirection vulnerability that had an allowlist configured. Aka, leverage Google AMP or similarly configured services for fun and profit during testing.

Read More

Can't crack an NTLMv2 to plaintext during an engagement? Have you tried Hashcat's 27100 mode?

Read More

That time I (hacked) obtained a root shell on a $60,000 lighting console while waiting for Beartooth to go on stage and ended up getting a CVE out of it.

Read More

An informative blog post detailing my first time setting up, configuring, and leveraging Mythic C2 to obtain multiple shells on both a Windows and Linux host as well as some basic post-exploitation activities.

Read More

Securing infrastructure (almost) automagically with CrowdSec. Learn how to setup CrowdSec, configure Bouncers, and view logs/alerts. Also, in typical offensive security fashion, we're going to be the one performing attacks against the CrowdSec installation.

Read More