MITRE ATT&CK⢠Analysis - T1056.004 Credential API Hooking
Various tests involving methods outlined within the MITRE ATT&CK framework.
Browse
- MITRE ATT&CK 28
- Reverse Engineering 28
- CTF 26
- Windows 25
- Tutorials 23
- PracticalMalwareAnalysis 23
- HTB 19
- Holiday Hack Challenge (HHC) 5
- Penetration Testing 2
- DFIR 2
- Cheatsheet 2
- DEFCON 1
- OSCP 1
- STRRAT 1
- Threat Intelligence 1
- Redline Stealer 1
- Miscellaneous 1
- Aspmuma 1
- Remcos 1
- Game Hacking 1
- Pwn Adventure 1
MITRE ATT&CK
MITRE ATT&CK⢠Analysis - T1556.002 Password Filter DLL
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1090 Proxy
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1113 Screen Capture
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1087 Account Discovery
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1074.001 Local Data Staging
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1053.005 Scheduled Task
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1021.006 Windows Remote Management
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1037.001 Logon Script (Windows)
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1218.005 Mshta
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1218.002 Control Panel
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1557.001 LLMNR/NBT-NS Poisoning and SMB Relay
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1550.002 Pass the Hash
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1218.003 CMSTP
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1546.012 Image File Execution Options Injection
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1548.002 - Bypass User Account Control
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1546.001 Change Default File Association
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1218.004 InstallUtil
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1091 Replication Through Removable Media
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1027.004 Compile After Delivery
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1127.001 MSBuild
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1546.010 AppInit DLLs
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1078 Valid Accounts
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1055 Process Injection
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1543.003 Windows Service
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1546.008 Accessibility Features
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1197 BITS Jobs
Various tests involving methods outlined within the MITRE ATT&CK framework.
MITRE ATT&CK⢠Analysis - T1546.015 Component Object Model Hijacking
Various tests involving methods outlined within the MITRE ATT&CK framework.
Reverse Engineering
Pwn Adventure 3 - Pwnie Island
Hacking âPwn Adventure 3: Pwnie Islandâ, an intentionally vulnerable first-person MMORPG.
Remcos RAT - Malware Analysis Lab
Analysis of Remcos RAT, a prevalent remote access tool/trojan.
Aspmuma 2009 âxxooxxâ - Malware Analysis Lab
Analysis of a web shell Iâve named Aspmuma 2009 âxxooxxâ.
Redline Stealer - Malware Analysis Lab
Analysis of the malware Redline Stealer.
STRRAT (Strigoi) - Malware Analysis Lab
Analysis of the malware STRRAT.
Practical Malware Analysis - Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Conclusion Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 9 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 8 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 7 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 6 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 5 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 4 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 3 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 21 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 20 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 2 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 19 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 18 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 17 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 16 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 15 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 14 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 13 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 12 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 11 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 10 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 1 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
CTF
Pwn Adventure 3 - Pwnie Island
Hacking âPwn Adventure 3: Pwnie Islandâ, an intentionally vulnerable first-person MMORPG.
đ đ SANS 2022 Holiday Hack Challenge (HHC) - KringleCon 5
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2022, I successfully c...
đ đ SANS 2021 Holiday Hack Challenge (HHC) - KringleCon 4
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2021, I successfully c...
đ đ SANS 2020 Holiday Hack Challenge (HHC) - KringleCon 3
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2020, I successfully c...
2019 Defcon DFIR CTF Write-up
The Unofficial Defcon DFIR CTF comprised of 5 different challenge categories with a total of 82 DFIR related challenges including a Crypto Challenge, Deadbox...
Hack The Box - Querier
Querier is true to its name, requiring exploitation of common SQL vulnerabilities whilst combining elements of combing through macros, insecure SMB shares, h...
Hack The Box - Bastion
Bastion was a relatively simple machine with the biggest issue steming from maintaining a connection to a remote mounted drive. Utilising a machine vhd backu...
Hack The Box - Netmon
Netmon was a very simple box which highlighted issues with open FTP servers, plaintext configuration files, common password conventions, and blindly trusting...
đ đ SANS 2018 Holiday Hack Challenge (HHC) - KringleCon
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In January 2019, I successfully co...
Hack The Box - Irked
This machine highlighted a few issues such as supply chain compromise, the ease of hiding information using steganography, and how easily a vulnerable binary...
đ đ SANS 2019 Holiday Hack Challenge (HHC) - KringleCon 2
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2019, I successfully c...
Hack The Box - Ypuffy
This machine was quite interesting, and contained a privilege escalation method Iâd not seen mentioned elsewhere. Luckily this was confined to the challenge,...
Hack The Box - Waldo
This machine was interesting, starting with directory traversal and LFI vulnerabilities, it then exploits a feature not commonly known which is supposed to b...
Hack The Box - Zipper
This machine took a bit of thinking outside of the box so it was a bit of a nice challenge and involved exploiting both custom binaries and legitimate servic...
Hack The Box - Carrier
This machine had some interesting elements to it and really made you think outside of the box. It incorporated a number of elements which you wouldnât typica...
Hack The Box - Curling
This machine had some CTF elements to it, but overall wasnât that difficult to complete through proper enumeration. It highlights some issues which may be pr...
Hack The Box - Help
Help was an interesting machine which appeared to have multiple ways of gaining access and elevating privileges. In the end it contained elements of graphql,...
Hack The Box - Active
This machine was fairly straight forward and mimicked something youâd unfortunately expect to see even today in a typical penetration test. All in all itâs a...
Hack The Box - Access
This machine was fairly basic but still provided some useful reminders and tools which can be utilised to export pst file contents on Linux, natively transfe...
Hack The Box - Jerry
Jerry would have to be one of the easiest machines Iâve ever compromised on Hack The Box. This involved using legitimate credentials to log onto an Apache To...
Hack The Box - Dev0ops
Dev0ops highlighted issues with weakly configured XML parsers which lead to an XXE vulnerability, and developer error which lead to SSH keys in commit revisi...
Hack The Box - Solidstate
This machine contained a fairly straightforward SMTP vulnerability which didnât even need to be exploited to fully compromise the machine. It is an essential...
Hack The Box - Chatterbox
Chatterbox was a reasonably simple machine which required exploiting a vulnerable âAchatâ service with custom shellcode, and then migrating to a more stable ...
Hack The Box - Jeeves
Jeeves showed us that an unauthenticated Jenkins server can easily lead to a reverse shell through Groovy Script even if the web-directory is unknown. It hig...
Hack The Box - Bashed
Bashed was an extremely simple box demonstrating some of the most basic techniques for spawning reverse shells and elevating privileges. It is a great beginn...
Hack The Box - Blue
Blue is definitely one of the shortest boxes in Hack The Box history. As the name suggests all that was required to fully compromise this machine was MS17-01...
Windows
Remcos RAT - Malware Analysis Lab
Analysis of Remcos RAT, a prevalent remote access tool/trojan.
Aspmuma 2009 âxxooxxâ - Malware Analysis Lab
Analysis of a web shell Iâve named Aspmuma 2009 âxxooxxâ.
Redline Stealer - Malware Analysis Lab
Analysis of the malware Redline Stealer.
STRRAT (Strigoi) - Malware Analysis Lab
Analysis of the malware STRRAT.
Practical Malware Analysis - Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Conclusion Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 9 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 7 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 6 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 5 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 3 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 21 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 20 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 2 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 19 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 18 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 17 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 16 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 15 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 14 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 13 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 12 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 11 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 10 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 1 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Tutorials
Practical Malware Analysis - Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Conclusion Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 9 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 8 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 7 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 6 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 5 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 4 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 3 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 21 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 20 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 2 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 19 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 18 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 17 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 16 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 15 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 14 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 13 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 12 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 11 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 10 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 1 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
PracticalMalwareAnalysis
Practical Malware Analysis - Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Conclusion Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 9 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 8 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 7 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 6 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 5 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 4 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 3 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 21 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 20 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 2 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 19 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 18 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 17 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 16 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 15 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 14 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 13 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 12 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 11 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 10 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
Practical Malware Analysis - Chapter 1 Lab Write-up
This details reverse engineering activities and answers for labs contained in the book âPractical Malware Analysisâ by Michael Sikorski and Andrew Honig, whi...
HTB
Hack The Box - Querier
Querier is true to its name, requiring exploitation of common SQL vulnerabilities whilst combining elements of combing through macros, insecure SMB shares, h...
Hack The Box - Bastion
Bastion was a relatively simple machine with the biggest issue steming from maintaining a connection to a remote mounted drive. Utilising a machine vhd backu...
Hack The Box - Netmon
Netmon was a very simple box which highlighted issues with open FTP servers, plaintext configuration files, common password conventions, and blindly trusting...
Hack The Box - Irked
This machine highlighted a few issues such as supply chain compromise, the ease of hiding information using steganography, and how easily a vulnerable binary...
Hack The Box - Ypuffy
This machine was quite interesting, and contained a privilege escalation method Iâd not seen mentioned elsewhere. Luckily this was confined to the challenge,...
Hack The Box - Waldo
This machine was interesting, starting with directory traversal and LFI vulnerabilities, it then exploits a feature not commonly known which is supposed to b...
Hack The Box - Zipper
This machine took a bit of thinking outside of the box so it was a bit of a nice challenge and involved exploiting both custom binaries and legitimate servic...
Hack The Box - Carrier
This machine had some interesting elements to it and really made you think outside of the box. It incorporated a number of elements which you wouldnât typica...
Hack The Box - Curling
This machine had some CTF elements to it, but overall wasnât that difficult to complete through proper enumeration. It highlights some issues which may be pr...
Hack The Box - Help
Help was an interesting machine which appeared to have multiple ways of gaining access and elevating privileges. In the end it contained elements of graphql,...
Hack The Box - Active
This machine was fairly straight forward and mimicked something youâd unfortunately expect to see even today in a typical penetration test. All in all itâs a...
Hack The Box - Access
This machine was fairly basic but still provided some useful reminders and tools which can be utilised to export pst file contents on Linux, natively transfe...
Hack The Box - Jerry
Jerry would have to be one of the easiest machines Iâve ever compromised on Hack The Box. This involved using legitimate credentials to log onto an Apache To...
Hack The Box - Dev0ops
Dev0ops highlighted issues with weakly configured XML parsers which lead to an XXE vulnerability, and developer error which lead to SSH keys in commit revisi...
Hack The Box - Solidstate
This machine contained a fairly straightforward SMTP vulnerability which didnât even need to be exploited to fully compromise the machine. It is an essential...
Hack The Box - Chatterbox
Chatterbox was a reasonably simple machine which required exploiting a vulnerable âAchatâ service with custom shellcode, and then migrating to a more stable ...
Hack The Box - Jeeves
Jeeves showed us that an unauthenticated Jenkins server can easily lead to a reverse shell through Groovy Script even if the web-directory is unknown. It hig...
Hack The Box - Bashed
Bashed was an extremely simple box demonstrating some of the most basic techniques for spawning reverse shells and elevating privileges. It is a great beginn...
Hack The Box - Blue
Blue is definitely one of the shortest boxes in Hack The Box history. As the name suggests all that was required to fully compromise this machine was MS17-01...
Holiday Hack Challenge (HHC)
đ đ SANS 2022 Holiday Hack Challenge (HHC) - KringleCon 5
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2022, I successfully c...
đ đ SANS 2021 Holiday Hack Challenge (HHC) - KringleCon 4
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2021, I successfully c...
đ đ SANS 2020 Holiday Hack Challenge (HHC) - KringleCon 3
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2020, I successfully c...
đ đ SANS 2018 Holiday Hack Challenge (HHC) - KringleCon
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In January 2019, I successfully co...
đ đ SANS 2019 Holiday Hack Challenge (HHC) - KringleCon 2
Every year the SANS Institute and the Counter Hack Team hosts a âHoliday Hack Challengeâ also commonly referred to as HHC. In December 2019, I successfully c...
Penetration Testing
OSCP and Penetration Testing
Cyber Security resources for OSCP and penetration testing.
Hack The Box - Querier
Querier is true to its name, requiring exploitation of common SQL vulnerabilities whilst combining elements of combing through macros, insecure SMB shares, h...
DFIR
Digital Forensics and Incident Response
Cheatsheet containing a variety of commands and concepts relating to digital forensics and incident response.
2019 Defcon DFIR CTF Write-up
The Unofficial Defcon DFIR CTF comprised of 5 different challenge categories with a total of 82 DFIR related challenges including a Crypto Challenge, Deadbox...
Cheatsheet
Digital Forensics and Incident Response
Cheatsheet containing a variety of commands and concepts relating to digital forensics and incident response.
OSCP and Penetration Testing
Cyber Security resources for OSCP and penetration testing.
DEFCON
2019 Defcon DFIR CTF Write-up
The Unofficial Defcon DFIR CTF comprised of 5 different challenge categories with a total of 82 DFIR related challenges including a Crypto Challenge, Deadbox...
OSCP
OSCP and Penetration Testing
Cyber Security resources for OSCP and penetration testing.
STRRAT
STRRAT (Strigoi) - Malware Analysis Lab
Analysis of the malware STRRAT.
Threat Intelligence
STRRAT (Strigoi) - Malware Analysis Lab
Analysis of the malware STRRAT.
Redline Stealer
Redline Stealer - Malware Analysis Lab
Analysis of the malware Redline Stealer.
Miscellaneous
Nuggets of Knowledge
Place to capture random social media posts which Iâve made, and capture various pieces of shared knowledge which proved popular.
Aspmuma
Aspmuma 2009 âxxooxxâ - Malware Analysis Lab
Analysis of a web shell Iâve named Aspmuma 2009 âxxooxxâ.
Remcos
Remcos RAT - Malware Analysis Lab
Analysis of Remcos RAT, a prevalent remote access tool/trojan.
Game Hacking
Pwn Adventure 3 - Pwnie Island
Hacking âPwn Adventure 3: Pwnie Islandâ, an intentionally vulnerable first-person MMORPG.
Pwn Adventure
Pwn Adventure 3 - Pwnie Island
Hacking âPwn Adventure 3: Pwnie Islandâ, an intentionally vulnerable first-person MMORPG.