Daily Expense Tracker System (DETS) is vulnerable to SQL injection. This post will be a brief write up about discovery and exploitation of CVE-2020-10106. These vulnerabilities exist in the Daily E...

This is a quick post on how to configure GitHub SSH keys. The GitHub documentation is pretty good with this, so this post is more of a personal note. The advantage of using GitHub SSH keys is that...

I would like to preface this post by saying that the privilege escalation is through an unintended method. Host Enumeration As usual, we begin with a full port scan in order to discover o...

Hello World - Heading 1 Hello World - Text

Enumeration Initially, we must discover what IP the target received from the DHCP server. We can use netdiscover to identify the IP address. From there, we perform a full port scan to identify ava...

Small disclaimer: I did the “old” version of PWK (now known as PEN-200), I took the exam before all the Windows content was released. My OSCP Experience It’s a little surreal for me to hold my ...