Originally posted on Medium on December 22, 2024. Initial Foothold: As usual, we begin with Nmap scan. # Nmap 7.94SVN scan initiated Sun Dec 22 09:37:19 2024 as: nmap -sS -p- -sC -sV -Pn --min...

In today’s digital landscape, passwords serve as the primary gatekeepers of our online identities and sensitive information. However, these seemingly simple strings of characters are often the targ...

Disclaimer: This isn’t meant to teach anything new—just sharing a personal experience. سَلامٌ I’ll share in this write-up how I discovered my first €€€€ bounty. At first, I started with basic man...

Before Diving I’ll discuss how I discovered that all users’ PII was leaked via the Microsoft SharePoint API. What is Microsoft SharePoint? Microsoft SharePoint is an enterprise collaboration and...

CATEGORY: Web Difficulty: Easy Challenge Description: Are you able to retrieve the 6th character from the database? You can download the task source code from here → HackTheBox Challenge App St...