Introduction Principal is a medium-rated Linux machine on Hack The Box that features a Java-based internal platform running on Jetty with pac4j JWT authentication. The attack path involves exploit...

Disclaimer: This transcript was generated with AI assistance and has been manually reviewed and edited. Despite best efforts, some inaccuracies may remain — please use your best judgement when refe...

Introduction TwoMillion is an easy-rated Linux machine on Hack The Box that features a recreation of the old HTB website where users had to hack their way in to receive an invite code. The attack ...

Introduction Cap is an easy-rated Linux machine on Hack The Box that serves as a great introduction to analyzing packet captures and understanding Linux capabilities. The attack path involves disc...

Disclaimer: This transcript was generated with AI assistance and has been manually reviewed and edited. Despite best efforts, some inaccuracies may remain — please use your best judgement when refe...

Disclaimer: This transcript was generated with AI assistance and has been manually reviewed and edited. Despite best efforts, some inaccuracies may remain — please use your best judgement when refe...

Introduction So you want to impersonate someone on Slack? Maybe claim that you’ve hacked the next Uber? To do this some assumptions are made for those looking to follow suit. One major assumpti...

Introduction I acquired my OSCP Certification back on the 12th of May 2019. It took three attempts to acquire it but I prevailed. I should note this was for OSCP/PWK v2. The course was recently u...

Introduction If you’re viewing this you’re most likely interested in developing your first box for Vulnhub. For those that are unaware of what Vulnhub is: Basically a website for individuals to u...

Introduction The InfoSec Prep Discord server ( https://discord.gg/RRgKaep ) works closely with the Offensive Security staff. As such, OffSec gave our server an OSCP voucher code to give away. The...