JJebitokinsharonjebitok.com·2d ago · 61 min readThreat Modeling for Pentesters (THM)Link to the Pentest Methodologies and Reporting path in TryHackMe: Threat Modeling for Pentesters Introduction It is your first week at a security consultancy, and the team lead drops a 50-page scope 10
JJebitokinsharonjebitok.com·2d ago · 23 min readRe-Testing Link to the Pentesting Methodologies and Reporting on TryHackMe: Re-Testing Introduction A penetration test delivers a report. The client implements fixes. Then they ask you the question every client 00
JJebitokinsharonjebitok.com·2d ago · 45 min readPlanning and Scoping (TryHackMe)Link to Planning and Scoping room on TryHackMe: Planning and Scoping Introduction You just landed your first consulting engagement. A mid-sized e-commerce company, BrightCart, has been in the news for00
Ppwnaisecinpwnaisec.hashnode.dev·Jun 16 · 4 min readHow I Passed eJPTv2 with 88% on My First AttemptIntroduction After months of learning, practicing, failing, and improving, I am excited to share that I successfully passed the eJPTv2 (eLearnSecurity Junior Penetration Tester) certification with an 00
YPYogesh Peelainexploitnotes.hashnode.dev·Jun 11 · 5 min readHackTheBox - Facts WriteupDifficulty: Easy OS: Linux Reconnaissance Nmap nmap -sCV -A -p- <MACHINE-IP> PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 9.9p1 Ubuntu 3ubuntu3.2 80/tcp open http nginx 1.26.3 (Ubun00
VGVivek Goswamiinvivekgoswami.hashnode.dev·Jun 8 · 6 min readDevArea Walthrough Hack The Box Welcome to another Hack the Box walkthrough. In this blog post, I have demonstrated how I owned the DevArea machine on Hack the Box. Hack The Box is a cybersecurity platform that helps you bridge know00
AAAmanda Alleninamandaallen.hashnode.dev·Jun 8 · 4 min readWhy Broken Access Control Continues to Dominate Web Application Security in 2026Web application security has evolved significantly over the last decade. Organizations invest heavily in security testing, secure development practices, cloud security, and automated scanning. Yet one00
JJebitokinsharonjebitok.com·Jun 4 · 19 min readGuided Pentest: Infrastructure (TryHackMe)Link to the Walkthrough on TryHackMe: Guided Pentest: Infrastructure Introduction Penetration testing isn't a single skill. It's a way of thinking. On any given engagement, you might need to think lik00
JJebitokinsharonjebitok.com·Jun 3 · 27 min readDive Into Pentesting (TryHackMe)Link to the walkthrough in TryHackMe: Dive Into Pentesting Introduction Penetration testing is a proactive security practice that helps organisations uncover weaknesses in their systems, applications,00
CC9labinc9lab.hashnode.dev·Jun 3 · 6 min readThick Client Pentesting - Part : 1 The Foundation & Your Arsenal | C9LabWelcome, future hackers. You can fuzz endpoints, find SQLi in your sleep, and bypass authentication on web apps blindfolded. But now you’ve been handed a .exe file. You point Burp at it. Nothing happe00
