@berzi
Techie, coder, weeb, nerd.
Nothing here yet.
Nothing here yet.
May 4, 2025 · 3 min read · 💡 please note that “<ip>” in this writeup stands for the target machine’s IP given by THM I did an nmap scan for all possible ports ▶ nmap -p- <ip> Starting Nmap 7.94SVN (https://nmap.org) at 2025-02-01 15:38 EST Nmap scan report for <homeip> Host...
Join discussion
Mar 20, 2025 · 3 min read · How exactly does a subdomain takeover occur? basically it is when what we have a dangling DNS record for an Azure resource (a VM or a Web app). When the Azure resource is deleted, the corresponding CNAME record stays. The attacker can find the respe...
Join discussion
Feb 12, 2025 · 2 min read · This lab focuses on information gathering and reconnaissance techniques to analyze a target website. Participants will explore various aspects of the website to uncover potential vulnerabilities, sensitive files, and misconfigurations. By leveraging ...
Join discussion
Feb 4, 2025 · 12 min read · WordPress is one of the most popular open-source Content Management Systems (CMS) and it is widely used to build websites ranging from blogs to e-commerce platforms. In November 2024, a critical vulnerability was discovered in the Really Simple Secur...
Join discussion
Jan 21, 2025 · 6 min read · Sounds darn good I know right? It’s equally much of a headache. Kerberos is an authentication protocol that’s made and maintained by MIT and used in numerous applications like in Windows Active Directory. Kerberos was derived from the greek word “Cer...
Join discussion