Канал: CryptoCat

X-Forwarded-For Header Spoofing and XXE - "BioCorp" [INTIGRITI 1337UP CTF 2024]

X-Forwarded-For Header Spoofing and XXE - "BioCorp" [INTIGRITI 1337UP CTF 2024]

One Time Pad (OTP) with a Twist - "Schrödinger's Pad" [INTIGRITI 1337UP CTF 2024]

One Time Pad (OTP) with a Twist - "Schrödinger's Pad" [INTIGRITI 1337UP CTF 2024]

JWT Algorithm Confusion and SSTI (Pug) - "Cat Club" [INTIGRITI 1337UP CTF 2024]

JWT Algorithm Confusion and SSTI (Pug) - "Cat Club" [INTIGRITI 1337UP CTF 2024]

Bypassing Server-side Anti-Cheat Protections - "Bug Squash (part 2)" [INTIGRITI 1337UP CTF 2024]

Bypassing Server-side Anti-Cheat Protections - "Bug Squash (part 2)" [INTIGRITI 1337UP CTF 2024]

A Guide for Solving Beginner CTF Challenges [INTIGRITI 1337UP CTF 2024]

A Guide for Solving Beginner CTF Challenges [INTIGRITI 1337UP CTF 2024]

Cookie Forgery, Signature Bypass and Blind Command Injection - "Feature Unlocked" [CSCTF 2024]

Cookie Forgery, Signature Bypass and Blind Command Injection - "Feature Unlocked" [CSCTF 2024]

XSS in PDF.js (CVE-2024-4367) - "Upload" [Akasec CTF 2024]

XSS in PDF.js (CVE-2024-4367) - "Upload" [Akasec CTF 2024]

2: XML External Entity Injection (XXE) - Gin and Juice Shop (Portswigger)

2: XML External Entity Injection (XXE) - Gin and Juice Shop (Portswigger)

Burp Suite Certified Practitioner (BSCP) Review + Tips/Tricks [Portswigger]

Burp Suite Certified Practitioner (BSCP) Review + Tips/Tricks [Portswigger]

1: SQL Injection (Union + Blind) - Gin and Juice Shop (Portswigger)

1: SQL Injection (Union + Blind) - Gin and Juice Shop (Portswigger)

HackTheBox Cyber Apocalypse 2024: Web Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2024: Web Challenge Walkthroughs

0: Getting Started with Burp Suite - Gin and Juice Shop (Portswigger)

0: Getting Started with Burp Suite - Gin and Juice Shop (Portswigger)

LA CTF 2024: Web Challenge Walkthroughs (1-4)

LA CTF 2024: Web Challenge Walkthroughs (1-4)

How to Approach an OSINT Challenge - "Photographs" [INTIGRITI 1337UP LIVE CTF 2023]

How to Approach an OSINT Challenge - "Photographs" [INTIGRITI 1337UP LIVE CTF 2023]

Format String Vulnerability - "Floor Mat Store" [INTIGRITI 1337UP LIVE CTF 2023]

Format String Vulnerability - "Floor Mat Store" [INTIGRITI 1337UP LIVE CTF 2023]

Websocket SQLi and Weak JWT Signing Key - "Bug Report Repo" [INTIGRITI 1337UP LIVE CTF 2023]

Websocket SQLi and Weak JWT Signing Key - "Bug Report Repo" [INTIGRITI 1337UP LIVE CTF 2023]

Unity Game Hacking Challenge - "Azusawa’s Gacha World" [SekaiCTF]

Unity Game Hacking Challenge - "Azusawa’s Gacha World" [SekaiCTF]

DOM Clobbering, Prototype Pollution and XSS - "sanity" Walkthrough [Amateurs CTF 2023]

DOM Clobbering, Prototype Pollution and XSS - "sanity" Walkthrough [Amateurs CTF 2023]

NahamCon CTF 2023: Web Challenge Walkthroughs

NahamCon CTF 2023: Web Challenge Walkthroughs

16 - Open Redirect (low/med/high) - Damn Vulnerable Web Application (DVWA)

16 - Open Redirect (low/med/high) - Damn Vulnerable Web Application (DVWA)

Is this NEW Generative AI Feature a GAME CHANGER? [Adobe Firefly]

Is this NEW Generative AI Feature a GAME CHANGER? [Adobe Firefly]

15 - Authorisation Bypass (low/med/high) - Damn Vulnerable Web Application (DVWA)

15 - Authorisation Bypass (low/med/high) - Damn Vulnerable Web Application (DVWA)

Leaking Secret Data with a Heap Overflow - "Leek" Pwn Challenge [Angstrom CTF 2023]

Leaking Secret Data with a Heap Overflow - "Leek" Pwn Challenge [Angstrom CTF 2023]

Web Challenges [Space Heroes CTF 2023]

Web Challenges [Space Heroes CTF 2023]

Teleporting Through Walls with Cheat Engine - "No Way Out" [PicoCTF 2023]

Teleporting Through Walls with Cheat Engine - "No Way Out" [PicoCTF 2023]

Doublespeak: Jailbreaking ChatGPT-style Sandboxes using Linguistic Hacks

Doublespeak: Jailbreaking ChatGPT-style Sandboxes using Linguistic Hacks

CAN I WIN A GAME OF BATTLEGROUNDS?! [HackTheBox - Server Siege]

CAN I WIN A GAME OF BATTLEGROUNDS?! [HackTheBox - Server Siege]

CVE-2022-4510: Directory Traversal RCE in binwalk

CVE-2022-4510: Directory Traversal RCE in binwalk

HackTheBox Battlegrounds - Server Siege (Practice Mode)

HackTheBox Battlegrounds - Server Siege (Practice Mode)

HackTheBox Certified Penetration Testing Specialist (CPTS) - Review + Tips

HackTheBox Certified Penetration Testing Specialist (CPTS) - Review + Tips

Tier 1: Funnel - HackTheBox Starting Point - Full Walkthrough

Tier 1: Funnel - HackTheBox Starting Point - Full Walkthrough

Tier 0: Synced - HackTheBox Starting Point - Full Walkthrough

Tier 0: Synced - HackTheBox Starting Point - Full Walkthrough

Tier 0: Mongod - HackTheBox Starting Point - Full Walkthrough

Tier 0: Mongod - HackTheBox Starting Point - Full Walkthrough

Tier 1: Three - HackTheBox Starting Point - Full Walkthrough

Tier 1: Three - HackTheBox Starting Point - Full Walkthrough

Linked List Exploit Continued - GOT Overwrite - "Links 2+3" Pwn Challenge [ImaginaryCTF]

Linked List Exploit Continued - GOT Overwrite - "Links 2+3" Pwn Challenge [ImaginaryCTF]

Exploiting a Vulnerable Linked List Implementation - "Links 1" Pwn Challenge [ImaginaryCTF]

Exploiting a Vulnerable Linked List Implementation - "Links 1" Pwn Challenge [ImaginaryCTF]

Exploiting a Use-After-Free (UAF) Vulnerability - "Unsubscriptions Are Free" Pwn Challenge [PicoGym]

Exploiting a Use-After-Free (UAF) Vulnerability - "Unsubscriptions Are Free" Pwn Challenge [PicoGym]

Tier 2: Base - HackTheBox Starting Point - Full Walkthrough

Tier 2: Base - HackTheBox Starting Point - Full Walkthrough

SEETF [Social Engineering Experts] 2022 - Challenge Walkthroughs

SEETF [Social Engineering Experts] 2022 - Challenge Walkthroughs

Intergalactic Recovery [easy]: HackTheBox Forensics Challenge (RAID 5 Disk Recovery)

Intergalactic Recovery [easy]: HackTheBox Forensics Challenge (RAID 5 Disk Recovery)

Heap Exploit (ret2win) - "Hellbound" Pwn Challenge [HackTheBox Cyber Apocalypse CTF 2022]

Heap Exploit (ret2win) - "Hellbound" Pwn Challenge [HackTheBox Cyber Apocalypse CTF 2022]

Tier 0: Redeemer - HackTheBox Starting Point - Full Walkthrough

Tier 0: Redeemer - HackTheBox Starting Point - Full Walkthrough

Angstrom CTF 2022 - Challenge Walkthroughs

Angstrom CTF 2022 - Challenge Walkthroughs

NahamCon CTF 2022: Web Challenge Walkthroughs

NahamCon CTF 2022: Web Challenge Walkthroughs

10: Bypassing Stack Canaries (leak + write) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

10: Bypassing Stack Canaries (leak + write) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

Emdee Five for Life [easy]: HackTheBox Misc Challenge (BeautifulSoup / Burp Intruder)

Emdee Five for Life [easy]: HackTheBox Misc Challenge (BeautifulSoup / Burp Intruder)

9: Overwriting Global Offset Table (GOT) Entries with printf() - Intro to Binary Exploitation (Pwn)

9: Overwriting Global Offset Table (GOT) Entries with printf() - Intro to Binary Exploitation (Pwn)

Tier 1: Responder - HackTheBox Starting Point - Full Walkthrough

Tier 1: Responder - HackTheBox Starting Point - Full Walkthrough

Binary Exploitation (Pwn) Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Binary Exploitation (Pwn) Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Reverse Engineering (RE) Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Reverse Engineering (RE) Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Web Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Web Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Forensics Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Forensics Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

Buffer Overflow (ret2win) with 5 char* Arguments - "Vader" Pwn Challenge [Space Heroes CTF 2022]

Buffer Overflow (ret2win) with 5 char* Arguments - "Vader" Pwn Challenge [Space Heroes CTF 2022]

Fuzzing GET Parameters with ffuf - "Flag in Space" Web Challenge [Space Heroes CTF 2022]

Fuzzing GET Parameters with ffuf - "Flag in Space" Web Challenge [Space Heroes CTF 2022]

Manager [easy]: HackTheBox Mobile Challenge (APK Reversing / Traffic Analysis)

Manager [easy]: HackTheBox Mobile Challenge (APK Reversing / Traffic Analysis)

Pusheen Loves Graphs [easy]: HackTheBox Misc Challenge (IDA Pro)

Pusheen Loves Graphs [easy]: HackTheBox Misc Challenge (IDA Pro)

8: Leak PIE (bypass) and Lib-C (ret2system) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

8: Leak PIE (bypass) and Lib-C (ret2system) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

7: Format String Vulnerabilities (printf) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

7: Format String Vulnerabilities (printf) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

6: Return to Lib-C (ret2system/one_gadget) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

6: Return to Lib-C (ret2system/one_gadget) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

Bypassing Stack Canaries and NX/DEP (Ret2Lib-C) - Bird - [Intigriti 1337UP LIVE CTF 2022]

Bypassing Stack Canaries and NX/DEP (Ret2Lib-C) - Bird - [Intigriti 1337UP LIVE CTF 2022]

Overwriting RBP with an Off-by-One Buffer Overflow - Cake - [Intigriti 1337UP LIVE CTF 2022]

Overwriting RBP with an Off-by-One Buffer Overflow - Cake - [Intigriti 1337UP LIVE CTF 2022]

Leaking Values with printf (Format String Vuln) - Search Engine - [Intigriti 1337UP LIVE CTF 2022]

Leaking Values with printf (Format String Vuln) - Search Engine - [Intigriti 1337UP LIVE CTF 2022]

Buffer Overflow with Shellcode Injection - Easy Register - [Intigriti 1337UP LIVE CTF 2022]

Buffer Overflow with Shellcode Injection - Easy Register - [Intigriti 1337UP LIVE CTF 2022]

5: Injecting Shellcode (Shellcraft/MSFVenom) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

5: Injecting Shellcode (Shellcraft/MSFVenom) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

Tier 1: Bike - HackTheBox Starting Point - Full Walkthrough

Tier 1: Bike - HackTheBox Starting Point - Full Walkthrough

4: Ret2Win with Function Parameters (x86/x64) - Buffer Overflow - Intro to Binary Exploitation (Pwn)

4: Ret2Win with Function Parameters (x86/x64) - Buffer Overflow - Intro to Binary Exploitation (Pwn)

3: Return to Win (Ret2Win) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

3: Return to Win (Ret2Win) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

2: Overwriting Variables on the Stack (pt 2) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

2: Overwriting Variables on the Stack (pt 2) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

1: Overwriting Variables on the Stack (pt 1) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

1: Overwriting Variables on the Stack (pt 1) - Buffer Overflows - Intro to Binary Exploitation (Pwn)

0: Intro/Basics/Setup - Buffer Overflows - Intro to Binary Exploitation (Pwn)

0: Intro/Basics/Setup - Buffer Overflows - Intro to Binary Exploitation (Pwn)

APKrypt [easy]: HackTheBox Mobile Challenge (patching .smali code with apktool)

APKrypt [easy]: HackTheBox Mobile Challenge (patching .smali code with apktool)

Bypassing Basic PHP WAF to Read Files - "para-code" Web Challenge [DefCamp CTF 2022]

Bypassing Basic PHP WAF to Read Files - "para-code" Web Challenge [DefCamp CTF 2022]

Decoding, Brute-Forcing and Crafting Flask Session Cookies - "web-intro" [DefCamp CTF 2022]

Decoding, Brute-Forcing and Crafting Flask Session Cookies - "web-intro" [DefCamp CTF 2022]

Tier 2: Unified - HackTheBox Starting Point - Full Walkthrough

Tier 2: Unified - HackTheBox Starting Point - Full Walkthrough

Stored XSS and IDOR with Predictable HMAC Generation - "knock-knock" Web Challenge [DiceCTF 2022]

Stored XSS and IDOR with Predictable HMAC Generation - "knock-knock" Web Challenge [DiceCTF 2022]

Tier 2: Markup - HackTheBox Starting Point - Full Walkthrough

Tier 2: Markup - HackTheBox Starting Point - Full Walkthrough

Exploiting Polkit pkexec LPE Vulnerability (CVE-2021-4034) - TryHackMe "PwnKit" Room

Exploiting Polkit pkexec LPE Vulnerability (CVE-2021-4034) - TryHackMe "PwnKit" Room

Tier 2: Included - HackTheBox Starting Point - Full Walkthrough

Tier 2: Included - HackTheBox Starting Point - Full Walkthrough

Tier 2: Vaccine - HackTheBox Starting Point - Full Walkthrough

Tier 2: Vaccine - HackTheBox Starting Point - Full Walkthrough

Tier 2: Oopsie - HackTheBox Starting Point - Full Walkthrough

Tier 2: Oopsie - HackTheBox Starting Point - Full Walkthrough

Tier 2: Archetype - HackTheBox Starting Point - Full Walkthrough

Tier 2: Archetype - HackTheBox Starting Point - Full Walkthrough

Tier 1: HackTheBox Starting Point - 6 Machines - Full Walkthrough (beginner friendly)

Tier 1: HackTheBox Starting Point - 6 Machines - Full Walkthrough (beginner friendly)

Tier 0: HackTheBox Starting Point - 5 Machines - Full Walkthrough (for beginners)

Tier 0: HackTheBox Starting Point - 5 Machines - Full Walkthrough (for beginners)

Exploiting Log4j Vulnerability (CVE-2021-44228) - TryHackMe "Solar" Room (by John Hammond)

Exploiting Log4j Vulnerability (CVE-2021-44228) - TryHackMe "Solar" Room (by John Hammond)

JWT Key Confusion & Nunjucks SSTI - "Naughty or Nice" [Day 5: HackTheBox Cyber Santa CTF]

JWT Key Confusion & Nunjucks SSTI - "Naughty or Nice" [Day 5: HackTheBox Cyber Santa CTF]

Day 4 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021

Day 4 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021

Day 3 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021

Day 3 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021

Day 2 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021

Day 2 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021

Day 1 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021 (beginner friendly)

Day 1 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021 (beginner friendly)

Tree of Danger [medium]: HackTheBox Misc Challenge (PyJail with AST sanitization)

Tree of Danger [medium]: HackTheBox Misc Challenge (PyJail with AST sanitization)

RustScan - Pentesting Tutorials

RustScan - Pentesting Tutorials

HTB x UNI CTF 2021: HackTheBox University Capture The Flag Qualifiers

HTB x UNI CTF 2021: HackTheBox University Capture The Flag Qualifiers

Exploiting Predictable PRNG Seeds (with PwnTools) - Badseed (Reversing/Crypto) [K3RN3L CTF]

Exploiting Predictable PRNG Seeds (with PwnTools) - Badseed (Reversing/Crypto) [K3RN3L CTF]

XOR Known-Plaintext Attack - Twizzty Buzzinezz (Crypto/Reversing) [K3RN3L CTF]

XOR Known-Plaintext Attack - Twizzty Buzzinezz (Crypto/Reversing) [K3RN3L CTF]

Reversing Assembly Code (ASM) to Extract Password (Pin) - K3RN3L DROID [K3RN3L CTF]

Reversing Assembly Code (ASM) to Extract Password (Pin) - K3RN3L DROID [K3RN3L CTF]

Pwn Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Pwn Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Forensics Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Forensics Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Reversing Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Reversing Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Web Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Web Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021

Binary Exploitation (Pwn) Challenge Walkthroughs - Killer Queen CTF 2021

Binary Exploitation (Pwn) Challenge Walkthroughs - Killer Queen CTF 2021

DEADFACE Capture The Flag (CTF) 2021 - Challenge Walkthroughs [Beginner Friendly]

DEADFACE Capture The Flag (CTF) 2021 - Challenge Walkthroughs [Beginner Friendly]

Web Challenge Walkthroughs - Digital Overdose CTF 2021

Web Challenge Walkthroughs - Digital Overdose CTF 2021

Sekure Decrypt [easy]: HackTheBox Reversing Challenge (encrypted core dump)

Sekure Decrypt [easy]: HackTheBox Reversing Challenge (encrypted core dump)

Name Server [Tamil CTF] - Binary Exploitation (Pwn) Walkthrough

Name Server [Tamil CTF] - Binary Exploitation (Pwn) Walkthrough

Forensics Challenge Walkthroughs - DownUnderCTF (DUCTF) 2021

Forensics Challenge Walkthroughs - DownUnderCTF (DUCTF) 2021

HacktivityCon 2021 Capture The Flag (CTF) - Challenge Walkthroughs

HacktivityCon 2021 Capture The Flag (CTF) - Challenge Walkthroughs

Hissss [easy]: HackTheBox Reversing Challenge (python bytecode)

Hissss [easy]: HackTheBox Reversing Challenge (python bytecode)

CSAW 2021 Capture The Flag (CTF) - Qualifiers

CSAW 2021 Capture The Flag (CTF) - Qualifiers

C2C University CTF 2021 - Qualifiers

C2C University CTF 2021 - Qualifiers

Misc, Web, OSINT Challenges - RACTF 2021

Misc, Web, OSINT Challenges - RACTF 2021

Phase 2 Challenges - Hacky Holidays Space Race CTF 2021

Phase 2 Challenges - Hacky Holidays Space Race CTF 2021

Phase 1 Challenges - Hacky Holidays Space Race CTF 2021

Phase 1 Challenges - Hacky Holidays Space Race CTF 2021

Metasploit Framework (MSF) - Pentesting Tutorials

Metasploit Framework (MSF) - Pentesting Tutorials

Web Fuzzing (ffuf vs wfuzz) - Pentesting Tutorials

Web Fuzzing (ffuf vs wfuzz) - Pentesting Tutorials

Brute Forcing Login Credentials - Pentesting Tutorials

Brute Forcing Login Credentials - Pentesting Tutorials

Web Directory/File Discovery - Pentesting Tutorials

Web Directory/File Discovery - Pentesting Tutorials

NMap - Pentesting Tutorials

NMap - Pentesting Tutorials

Sparta - Pentesting Tutorials

Sparta - Pentesting Tutorials

Fragrouter - Pentesting Tutorials

Fragrouter - Pentesting Tutorials

Recon-ng - Pentesting Tutorials

Recon-ng - Pentesting Tutorials

theHarvester - Pentesting Tutorials

theHarvester - Pentesting Tutorials

Maltego - Pentesting Tutorials

Maltego - Pentesting Tutorials

DNS Enumeration - Pentesting Tutorials

DNS Enumeration - Pentesting Tutorials

Introduction/Setup (Metasploitable3) - Pentesting Tutorials

Introduction/Setup (Metasploitable3) - Pentesting Tutorials

Introduction to Burp Suite (for beginners)

Introduction to Burp Suite (for beginners)

Web: login, caas, pastebin-1 - picoMini CTF 2021 Challenges

Web: login, caas, pastebin-1 - picoMini CTF 2021 Challenges

Pwn: clutter-overflow - picoMini CTF 2021 Challenge

Pwn: clutter-overflow - picoMini CTF 2021 Challenge

IRCWare [easy]: HackTheBox Reversing Challenge (mapping syscalls)

IRCWare [easy]: HackTheBox Reversing Challenge (mapping syscalls)

Dangerously Set HTML Links - Common React Pitfalls - Veracode Security Labs Community Edition (free)

Dangerously Set HTML Links - Common React Pitfalls - Veracode Security Labs Community Edition (free)

Sneaky Links - Common React Pitfalls - Veracode Security Labs Community Edition (free)

Sneaky Links - Common React Pitfalls - Veracode Security Labs Community Edition (free)

React String Sanitization - Common React Pitfalls - Veracode Security Labs Community Edition (free)

React String Sanitization - Common React Pitfalls - Veracode Security Labs Community Edition (free)

JSON Web Token Flaws - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

JSON Web Token Flaws - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

(Re)Play It Again - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

(Re)Play It Again - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

JSON Injection - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

JSON Injection - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

HTTP Header Injection - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

HTTP Header Injection - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

The Power of None - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

The Power of None - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

Mass Assignment - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

Mass Assignment - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)

Basic Terminal Usage - Veracode Security Labs Community Edition (free)

Basic Terminal Usage - Veracode Security Labs Community Edition (free)

HackTheBox Cyber Apocalypse 2021 CTF - Pwn Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Pwn Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Reversing Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Reversing Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Web Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Web Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Crypto Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Crypto Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Misc Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Misc Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Forensics Challenge Walkthroughs

HackTheBox Cyber Apocalypse 2021 CTF - Forensics Challenge Walkthroughs

Ransom [easy]: HackTheBox Reversing Challenge (decrypt excel document)

Ransom [easy]: HackTheBox Reversing Challenge (decrypt excel document)

Anti-Flag [easy]: HackTheBox Reversing Challenge (binary patching with ghidra + pwntools)

Anti-Flag [easy]: HackTheBox Reversing Challenge (binary patching with ghidra + pwntools)

Baby Crypt [easy]: HackTheBox Reversing Challenge (XOR encryption)

Baby Crypt [easy]: HackTheBox Reversing Challenge (XOR encryption)

You Cant C Me [easy]: HackTheBox Reversing Challenge (solved multiple ways)

You Cant C Me [easy]: HackTheBox Reversing Challenge (solved multiple ways)

Simulating Basic Attacks with Metasploit and Social Engineer Toolkit

Simulating Basic Attacks with Metasploit and Social Engineer Toolkit

Jersey CTF 2021 - Challenge Walkthroughs (Beginner Friendly)

Jersey CTF 2021 - Challenge Walkthroughs (Beginner Friendly)

Angstrom CTF 2021 - Web Challenge Walkthroughs

Angstrom CTF 2021 - Web Challenge Walkthroughs

Angstrom CTF 2021 - Reverse Engineering Challenge Walkthroughs

Angstrom CTF 2021 - Reverse Engineering Challenge Walkthroughs

Angstrom CTF 2021 - Pwn Challenge Walkthroughs

Angstrom CTF 2021 - Pwn Challenge Walkthroughs

ropmev2 [hard]: HackTheBox Pwn Challenge (ROP execve with syscalls)

ropmev2 [hard]: HackTheBox Pwn Challenge (ROP execve with syscalls)

Ropme [hard]: HackTheBox Pwn Challenge (ret2libc)

Ropme [hard]: HackTheBox Pwn Challenge (ret2libc)

Nightmare [easy]: HackTheBox Pwn Challenge (PIE/Lib-C leak + format string write exploit)

Nightmare [easy]: HackTheBox Pwn Challenge (PIE/Lib-C leak + format string write exploit)

PwnShop [easy]: HackTheBox Pwn Challenge (ret2libc with stack pivot)

PwnShop [easy]: HackTheBox Pwn Challenge (ret2libc with stack pivot)

Leet Test [easy]: HackTheBox Pwn Challenge (format string write exploit with pwntools)

Leet Test [easy]: HackTheBox Pwn Challenge (format string write exploit with pwntools)

Optimistic [easy]: HackTheBox Pwn Challenge (integer overflow and shellcode injection)

Optimistic [easy]: HackTheBox Pwn Challenge (integer overflow and shellcode injection)

Blacksmith [easy]: HackTheBox Pwn Challenge (seccomp protections)

Blacksmith [easy]: HackTheBox Pwn Challenge (seccomp protections)

Shooting Star [easy]: HackTheBox Pwn Challenge (ret2libc)

Shooting Star [easy]: HackTheBox Pwn Challenge (ret2libc)

HTB Console [easy]: HackTheBox Pwn Challenge (ret2system)

HTB Console [easy]: HackTheBox Pwn Challenge (ret2system)

Bat Computer [easy]: HackTheBox Pwn Challenge (shellcode injection)

Bat Computer [easy]: HackTheBox Pwn Challenge (shellcode injection)

Jeeves [easy]: HackTheBox Pwn Challenge (stack variable overwrite)

Jeeves [easy]: HackTheBox Pwn Challenge (stack variable overwrite)

Reg [easy]: HackTheBox Pwn Challenge (ret2win)

Reg [easy]: HackTheBox Pwn Challenge (ret2win)

Intel [easy]: HackTheBox OSINT Challenge (opensource intelligence)

Intel [easy]: HackTheBox OSINT Challenge (opensource intelligence)

Crime [medium]: HackTheBox Misc Challenge (voice translation featuring IBM watson)

Crime [medium]: HackTheBox Misc Challenge (voice translation featuring IBM watson)

Crooked Crockford [medium]: HackTheBox Misc Challenge (Base32 Crockford)

Crooked Crockford [medium]: HackTheBox Misc Challenge (Base32 Crockford)

Inferno [easy]: HackTheBox Misc Challenge (malbolge)

Inferno [easy]: HackTheBox Misc Challenge (malbolge)

Art [easy]: HackTheBox Misc Challenge (piet)

Art [easy]: HackTheBox Misc Challenge (piet)

0ld is g0ld [easy]: HackTheBox Misc Challenge (ZIP hash cracking)

0ld is g0ld [easy]: HackTheBox Misc Challenge (ZIP hash cracking)

fs0ciety [easy]: HackTheBox Misc Challenge (ZIP cracking)

fs0ciety [easy]: HackTheBox Misc Challenge (ZIP cracking)

Brainy's Cipher [easy]: HackTheBox Crypto Challenge (RsaCTFTool)

Brainy's Cipher [easy]: HackTheBox Crypto Challenge (RsaCTFTool)

Templed [easy]: HackTheBox Crypto Challenge (monk cipher)

Templed [easy]: HackTheBox Crypto Challenge (monk cipher)

Weak RSA [easy]: HackTheBox Crypto Challenge (wieners attack)

Weak RSA [easy]: HackTheBox Crypto Challenge (wieners attack)

You Can Do It! [easy]: HackTheBox Crypto Challenge (caeser box cipher)

You Can Do It! [easy]: HackTheBox Crypto Challenge (caeser box cipher)

Deceitful Batman [easy]: HackTheBox Crypto Challenge (CyberChef)

Deceitful Batman [easy]: HackTheBox Crypto Challenge (CyberChef)

Classic, yet complicated! [easy]: HackTheBox Crypto Challenge (vigenere cipher)

Classic, yet complicated! [easy]: HackTheBox Crypto Challenge (vigenere cipher)

Sick Teacher [easy]: HackTheBox Crypto Challenge (substitution cipher)

Sick Teacher [easy]: HackTheBox Crypto Challenge (substitution cipher)

BitsNBytes [hard]: HackTheBox Stego Challenge (Stego Helper Identification Tool)

BitsNBytes [hard]: HackTheBox Stego Challenge (Stego Helper Identification Tool)

Hidden in Colors [hard]: HackTheBox Stego Challenge (hex code colour mapping)

Hidden in Colors [hard]: HackTheBox Stego Challenge (hex code colour mapping)

Raining Blood [medium]: HackTheBox Stego Challenge (mp3 steganography)

Raining Blood [medium]: HackTheBox Stego Challenge (mp3 steganography)

blackSquare [easy]: HackTheBox Stego Challenge (morse code)

blackSquare [easy]: HackTheBox Stego Challenge (morse code)

Image Processing 101 [easy]: HackTheBox Stego Challenge (FFT)

Image Processing 101 [easy]: HackTheBox Stego Challenge (FFT)

Unified [easy]: HackTheBox Stego Challenge (UTF-8 steganography)

Unified [easy]: HackTheBox Stego Challenge (UTF-8 steganography)

Beatles [easy]: HackTheBox Stego Challenge (steganography)

Beatles [easy]: HackTheBox Stego Challenge (steganography)

Da Vinci [easy]: HackTheBox Stego Challenge (steghide)

Da Vinci [easy]: HackTheBox Stego Challenge (steghide)

Milkshake [easy]: HackTheBox Stego Challenge (sonic visualizer)

Milkshake [easy]: HackTheBox Stego Challenge (sonic visualizer)

Hackerman [easy]: HackTheBox Stego Challenge (steghide)

Hackerman [easy]: HackTheBox Stego Challenge (steghide)

Widescreen [easy]: HackTheBox Stego Challenge (stegosuite)

Widescreen [easy]: HackTheBox Stego Challenge (stegosuite)

Keep Tryin' [medium]: HackTheBox Forensics Challenge (DNS exfiltration / RC4 decryption)

Keep Tryin' [medium]: HackTheBox Forensics Challenge (DNS exfiltration / RC4 decryption)

Blue Shadow [medium]: HackTheBox Forensics Challenge (tweetlord)

Blue Shadow [medium]: HackTheBox Forensics Challenge (tweetlord)

Forget Me Not [medium]: HackTheBox Forensics Challenge (volatiliy .dwarf files)

Forget Me Not [medium]: HackTheBox Forensics Challenge (volatiliy .dwarf files)

Deadly Arthropod [medium]: HackTheBox Forensics Challenge (USB keystroke reconstruction)

Deadly Arthropod [medium]: HackTheBox Forensics Challenge (USB keystroke reconstruction)

Marshal In The Middle [medium]: HackTheBox Forensics Challenge (decrypt TLS traffic in wireshark)

Marshal In The Middle [medium]: HackTheBox Forensics Challenge (decrypt TLS traffic in wireshark)

S3cr3t_R3c1p3 [easy]: HackTheBox Forensics Challenge (RSA - rsa_ameth)

S3cr3t_R3c1p3 [easy]: HackTheBox Forensics Challenge (RSA - rsa_ameth)

Took the Byte [easy]: HackTheBox Forensics Challenge (XOR decryption with CyberChef)

Took the Byte [easy]: HackTheBox Forensics Challenge (XOR decryption with CyberChef)

Logger [easy]: HackTheBox Forensics Challenge (USB keystroke reconstruction)

Logger [easy]: HackTheBox Forensics Challenge (USB keystroke reconstruction)

Persistence [easy]: HackTheBox Forensics Challenge (registry analysis with regshell and regripper)

Persistence [easy]: HackTheBox Forensics Challenge (registry analysis with regshell and regripper)

No Place To Hide [easy]: HackTheBox Forensics Challenge (RDP bitmap caching)

No Place To Hide [easy]: HackTheBox Forensics Challenge (RDP bitmap caching)