Skip to content

Hacking Articles

Raj Chandel’s Blog

  • Courses We Offer
  • CTF Challenges
  • Penetration Testing
  • Web Penetration Testing
  • Red Teaming
  • Donate us
Penetration Testing

A Detailed Guide on Wfuzz

March 5, 2022 by raj12 Min Reading

Many tools now create an HTTP request and let users modify its contents. Similarly, fuzzing works by sending the same type of request multiple times

Penetration Testing

File Transfer Filter Bypass: Exe2Hex

February 28, 2022 by raj5 Min Reading

Exe2hex is a tool that g0tmilk developed, and you can find it here. The tool transcribes EXE into a series of hexadecimal strings, which DEBUG.exe

Persistence

Windows Persistence: Shortcut Modification (T1547)

February 28, 2022 by raj7 Min Reading

According to MITRE, adversaries often use Windows persistence techniques such as shortcut modification to maintain access or escalate privileges. Consequently, in this blog, we explore

Domain Escalation, Privilege Escalation, Red Teaming

Domain Escalation: PetitPotam NTLM Relay to ADCS Endpoints

February 25, 2022 by raj8 Min Reading

Will Schroeder and Lee Christensen wrote a research paper on this technique which can be referred to here. In ESC8 technique mentioned in the research paper,

Privilege Escalation

Windows Privilege Escalation: PrintNightmare

February 19, 2022 by raj10 Min Reading

Print Spooler has been on researcher’s radar ever since Stuxnet worm used print spooler’s privilege escalation vulnerability to spread through the network in nuclear enrichment

Privilege Escalation

Windows Privilege Escalation: SpoolFool

February 16, 2022 by raj9 Min Reading

Introduction Oliver Lyak posted a write-up about a Windows Privilege Escalation vulnerability that persisted in Windows systems even after patching of previous vulnerabilities in Print

CTF Challenges, HackTheBox

Horizontall HackTheBox Walkthrough

February 15, 2022 by raj5 Min Reading

Horizontall is an “easy” rated CTF Linux box on Hack The Box platform. The box covers initial compromise by exploiting Strapi RCE vulnerability and escalating

Privilege Escalation

Linux Privilege Escalation: PwnKit (CVE 2021-4034)

February 7, 2022 by raj4 Min Reading

Team Qualys discovered a local privilege escalation vulnerability in PolicyKit’s (polkit) setuid tool pkexec, known as PwnKit (CVE 2021-4034), which allows low-level users to run

Persistence

Domain Persistence: Computer Accounts

February 5, 2022 by raj7 Min Reading

Typically, while configuring Active Directories, system admins overlook the harm caused by allowing a local administrator account on a system assigned to a specific user.

Posts pagination

Previous 1 … 19 20 21 … 160 Next

Categories

Join Our WhatsApp Channel

Join Our Training Program

Join Our Telegram Channel

Join Our Discord Channel

Cyber Security Mindmap

Follow us on Twitter

Follow us on Linkedin

© All Rights Reserved 2021 Theme: Prefer by Template Sell.