MagicGardens from @hackthebox_eu has a ton in it! There's a bank trick and XSS via QRcode. There's a buffer overflow via large IPv6 packet. Docker Registry, Django deserialization, and a malicious kernel module as well.

RT @sarperavci: Just launched CTF Search with 24k+ CTF writeups, covering everything from web exploitation to reverse engineering. Check it…

@sarperavci Ha, you're right! Thanks

@sarperavci Very nice!

During #flareon11, I learned how to use a plugin to automate x64dbg with Python. In this video, I'll show how to set it up, get started, and then walk through my final tracing script.

#FlareOn11 prize arrived! Very neat!

Trickster from @hackthebox_eu showcases vulnerabilities in PrestaShop, ChangeDetectionIO, and Prusaslicer! In Beyond Root I'll show a ModSecurity configuration that was blocking by user-agent string.

RT @KartikDurg: Check out the fourth article in our Attack Anatomy series, where we dive deep into the techniques employed by Mustang Panda…

@Chirag99Artani @hackthebox_eu I think it requires a very specific setup. Someone has to code an application that will be vulnerable to it. You have found real world struts applications with file upload to try it on?

@tripflag Awesome! Thanks for letting me know. I did figure out the proc thing too. I don't remember what I said in that video, but I actually made a video about it a while back, lol.

Caption from @hackthebox_eu has some really tricky by neat request smuggling and HTML injection to get XSS, bypassing HAProxy, and exploiting a thrift / Go log handler. I'll also show patched unintends using Bitbucket DB Viewer and some HAProxy bypasses.

Creating the krb5 file is the worst. I always seem to screw it up somehow. Now netexec does it for you!

MonitorsThree from @hackthebox_eu, like Monitors and MonitorsTwo, starts with an instance of Cacti. This time I'll get creds from a different site, and abuse those to get RCE. For root, I'll abuse a CVE in Duplicati. In Beyond Root, I'll dig at port 8084

Sightless is a fun, easy-level box from @hackthebox_eu, with a couple CVEs to exploit in SQLPad and Froxlor. I'll play with some unintended exploits in Chrome debug and Froxlor, as well as an SSRF in SQLPad.

@TracketPacer DNS

Loved the new #HolidayHack format this year, releasing challenges in 4 acts! I'll hack web and JS, curl and PowerShell, hardware and mobile apps. There are two SOC / SIEM like challenges, and ransomware decryption.

Just finished the first Grace Hopper talk from 1982 on the @NSAGov podcast feed, and it's so good. Her thoughts on what computers would be are fascinating. What a brilliant thinker, and she has quite a whit as well. Can't wait to listen to the second one.

I always enjoy playing @hackvent! I completely 23 of 24 challenges in 2024. Lots of codes, crypto, exploitation, obscure languages. Really nice Verilog, ransomeware, and PCAP challenges. Even a smart contract I learned a lot from!