Latest Writeups

How I Solved THM: Thompson

Step-by-step walkthrough of TryHackMe's Thompson machine: chasing Ghostcat (CVE-2020-1938) down a dead end, stumbling into Tomcat Manager's default credentials, deploying a WAR reverse shell, and exploiting a writable cronjob script for root.

tryhackmethmthompsonghostcatcve-2020-1938apache-tomcatajpwar-shellprivilege-escalationcronjob

How I Solved THM: Startup

Step-by-step walkthrough of TryHackMe's Startup machine: directory enumeration with ffuf, uploading a PHP reverse shell via FTP, extracting SSH credentials from a pcap file, and exploiting a writable cronjob script for root access.

tryhackmethmstartupffufdirectory-enumerationftpreverse-shellprivilege-escalationcronjob

How I Solved HTB: Cap Machine

Step-by-step walkthrough of Hack The Box's Cap machine: discovering IDOR via pcap download, extracting FTP credentials from Wireshark, attempting CVE-2021-3156 (Baron Samedit), and exploiting Python's cap_setuid capability for root access.

hackingtheboxhtbcapidorprivilege-escalationpython-capsetuid

OverTheWire Natas: Levels 0–10 Walkthrough

Step-by-step walkthrough of OverTheWire's Natas wargame levels 0–10: source code disclosure, file inclusion, referer manipulation, cookie tampering, file path traversal, base64 reversal, command injection, and grep manipulation.

websqlinatasoverthewire

Keylogging: A Practical Approach

Building a Linux keylogger from scratch: switching from pynput to evdev for system-wide capture, Telegram Bot exfiltration, volatile storage in /dev/shm, and stealth-oriented file naming.

keylogginglinuxevdevcybersecurity

A Beginner's Guide to Tor Exit Nodes

How Tor exit nodes work, why you might pick a specific country, and exact torrc config snippets for ExitNodes, StrictNodes, and ExcludeExitNodes.

torprivacynetworking

Anti-Detect Browsers

How anti-detect browsers hide digital fingerprints, the tools hackers use, and the illicit activities they enable—from credential stuffing to botting.

cybersecurityanonymityfraud