HTB Writeup – TombWatcher

Posted on 2025-06-08

Classic AD lateral and privesc with ESC15 / ESC3

HTB Writeup – Certificate

Posted on 2025-06-01

From SeManageVolumePrivilege to Golden Cert Attack

Posted on 2025-05-25

CVE-2025-24071 to spoof Windows File Explorer & ESC16 in ADCS

Posted on 2025-05-18

Privilege Escalation practise in a Windows Active Directory

Posted on 2025-05-15

Steal memory from libc to hijack symbol resolution logic for RCE

Posted on 2025-05-11

Grafana CVE-2024-9264 LFR & RCE

Posted on 2025-05-05

CVE-2024-52301 to alter Laravel environment and Linux ENV injection

Posted on 2025-05-04

Hijack from the inside—abuse internal GOT/PLT in modern glibc

Posted on 2025-04-27

Java Sprint Boot Actuator heapdump & Eureka MITM

Posted on 2025-04-21

Make “Format String Vulnerability” great again