louie.rocks

Home

  • HTB Academy - Broken Authentication

    Jul 28, 2025

    • learning
    • brute-forcing
    • session-tokens
    • hydra
    • ffuf
    HTB Academy - Broken Authentication

    This module covers common vulnerabilities and misconfigurations regarding authentication that could be leveraged to gain unauthorized access to a web application.

  • HTB Academy - Login Brute Forcing

    Jul 24, 2025

    • learning
    • brute-forcing
    • hydra
    • medusa
    HTB Academy - Login Brute Forcing

    This module contains an exploration of brute-forcing techniques, including the use of tools like Hydra and Medusa, and the importance of strong password practices. It covers various attack scenarios, such as targeting SSH, FTP, and web login forms.

  • HTB Academy - Server-side Attacks

    Jul 18, 2025

    • learning
    • ssrf
    • ssti
    • ssi
    • xslt
    HTB Academy - Server-side Attacks

    In this module I learn how to identify and exploit server-side bugs, including Server-Side Request Forgery (SSRF), Server-Side Template Injection (SSTI), and Server-Side Includes (SSI) injection attacks.

  • HTB - Devel

    May 21, 2025

    • ftp
    • file-upload
    • aspx
    • asp
    • windows
    • iis
    • ms11-046
    HTB - Devel

    Devel, while relatively simple, demonstrates the security risks associated with some default program configurations. It is a beginner-level machine which can be completed using publicly available exploits.

  • HTB Academy - File Upload Attacks

    May 16, 2025

    • learning
    • file-upload
    • xxe
    • svg
    • php-filters
    • blacklists
    • whitelists
    • mime-type
    • content-type
    HTB Academy - File Upload Attacks

    Throughout this module, I learn the basics of identifying and exploiting file upload vulnerabilities and identifying and mitigating basic security restrictions in place to reach arbitrary file uploads.

  • Bellingcat - Back in Time (May 2025)

    May 11, 2025

    • bellingcat
    • osint
    • google-dorks
    • wayback-machine
    • exiftool
    Bellingcat - Back in Time (May 2025)

  • HTB Academy - Command Injections

    May 07, 2025

    • learning
    • command-injection
    HTB Academy - Command Injections

    Throughout this module, I learned different techniques for identifying and exploiting command injection vulnerabilities in web applications and applying various techniques to bypass filters and security mitigations.

  • HTB-Writeup

    May 04, 2025

    • sqli
    • CMS-Made-Simple
    • run-parts
    • PATH
    • SSH
    HTB-Writeup

    Writeup is an easy difficulty Linux box with DoS protection in place to prevent brute forcing. A CMS susceptible to a SQL injection vulnerability is found, which is leveraged to gain user credentials. The user is found to be in a non-default group, which has write access to part of the PATH. A path hijacking results in escalation of privileges to root.

  • HTB-Help

    Apr 22, 2025

    • helpdeskz
    • graphql
    • port3000
    • sqli
    • file-upload
    • linux-kernel
    • 4.4.0-116
    HTB-Help

    Help is an Easy Linux box which has a GraphQL endpoint which can be enumerated get a set of credentials for a HelpDesk software. The software is vulnerable to blind SQL injection which can be exploited to get a password for SSH Login. Alternatively an unauthenticated arbitrary file upload can be exploited to get RCE. Then the kernel is found to be vulnerable and can be exploited to get a root shell.

  • HTB-Alert

    Apr 05, 2025

    • xss
    • apache
    • htpasswd
    HTB-Alert

    Alert is an easy-difficulty Linux machine with a website to upload, view, and share markdown files. The site is vulnerable to cross-site scripting (XSS), which is exploited to access an internal page vulnerable to Arbitrary File Read and leveraged to gain access to a password hash. The hash is then cracked to reveal the credentials leveraged to gain `SSH` access to the target. Enumeration of processes running on the system shows a `PHP` file that is being executed regularly, which has excessive privileges for the management group our user is a member of and allows us to overwrite the file for code execution as root.

  • HTB-Active

    Apr 01, 2024

    • gpp-cached-password
    • kerberoast
    HTB-Active

  • HTB-Blue

    Apr 01, 2024

    • eternal-blue
    • smb
    • windows7
    HTB-Blue

  • HTB-Forest

    Apr 01, 2024

    • spn
    • ad
    • dcsync
    • kerberoast
    • asreproast
    HTB-Forest

  • HTB-Headless

    Apr 01, 2024

    • xss
    • bash-p
    • command-injection
    HTB-Headless

  • HTB-Resolute

    Apr 01, 2024

    • powershell-transcripts
    • dnsadmins
    • dll-injection
    HTB-Resolute

  • HTB-Sauna

    Apr 01, 2024

    • asreproast
    • autologon
    • dcsync
    HTB-Sauna

  • PG-Access

    Apr 01, 2024

    • htaccess
    • semanagevolumeprivilege
    • wertrigger
    • invoke-runasc
    PG-Access

  • PG-Algernon

    Apr 01, 2024

    • smartmail
    • port9998
    • distinct32
    • exploit-49216
    • cve-2019-7214
    PG-Algernon

  • PG-Assignment

    Apr 01, 2024

    • gogs
    • git-hook
    • base-p
    • api
    PG-Assignment

  • PG-Astronaut

    Apr 01, 2024

    • grav
    • exploit-49973
    • suid
    PG-Astronaut

  • PG-Bratarina

    Apr 01, 2024

    • smtp
    • opensmtpd
    • exploit-47984
    PG-Bratarina

  • PG-CVE-2023-33831

    Apr 01, 2024

    • fuxa
    • frangoteam
    • cve-2023-33831
    PG-CVE-2023-33831

  • PG-CVE-2023-40582

    Apr 01, 2024

    • npm
    • cve-2023-40582
    PG-CVE-2023-40582

  • PG-CVE-2023-6019

    Apr 01, 2024

    • ray-dashboard
    • cve-2023-6019
    PG-CVE-2023-6019

  • PG-CVE-2024-27292

    Apr 01, 2024

    • cve-2024-27292
    • docassemble
    • jinja
    PG-CVE-2024-27292

  • PG-ClamAV

    Apr 01, 2024

    • snmp
    • clamav
    • sendmail
    • exploit-4761
    PG-ClamAV

  • PG-Cockpit

    Apr 01, 2024

    • sqli
    • blaze
    • port9090
    • cockpit
    • tar
    PG-Cockpit

  • PG-Codo

    Apr 01, 2024

    • codoforum
    • file-upload
    • exploit-50978
    PG-Codo

  • PG-Craft

    Apr 01, 2024

    • odt
    • macros
    • seimpersonateprivilege
    • printspoofer
    PG-Craft

  • PG-Crane

    Apr 01, 2024

    • suitecrm
    • sugarcrm
    • default-credentials
    PG-Crane

  • PG-Exfiltrated

    Apr 01, 2024

    • subrion
    • file-upload
    • exploit-49876
    • exiftool
    • djvu
    • exploit-50911
    PG-Exfiltrated

  • PG-Exghost

    Apr 01, 2024

    • default-credentials
    • pcap
    • exiftool
    • cve-2019-4034
    • pwnkit
    PG-Exghost

  • PG-Extplorer

    Apr 01, 2024

    • extplorer
    • default-credentials
    • htusers
    • disk-group
    PG-Extplorer

  • PG-Fail

    Apr 01, 2024

    • rsync
    • fail2ban
    • actiond
    PG-Fail

  • PG-Fantastic

    Apr 01, 2024

    • grafana
    • cve-2021-43798
    • exploit-50581
    • go
    • pbkdf2
    • disk-group
    • port3000
    • ppp
    PG-Fantastic

  • PG-Flimsy

    Apr 01, 2024

    • apisix
    • cve-2022-24112
    • exploit-50829
    • bash-p
    • apt-get
    • apt-conf-d
    PG-Flimsy

  • PG-Flu

    Apr 01, 2024

    • atlassian
    • confluence
    • cve-2022-26134
    • bash-p
    PG-Flu

  • PG-Fractal

    Apr 01, 2024

    • symfony
    • fragment
    • proftp
    • sql-conf
    PG-Fractal

  • PG-GLPI*

    Apr 01, 2024

      PG-GLPI*

    • PG-Helpdesk

      Apr 01, 2024

      • manageengine
      • service
      • default-credentials
      • cve-2014-5301
      • war
      PG-Helpdesk

    • PG-Hetemit

      Apr 01, 2024

      • api
      • werkzeug
      • port50000
      • port18000
      PG-Hetemit

    • PG-Hokkaido

      Apr 01, 2024

      • kerbrute
      • impersonate
      • setuserinfo2
      • sebackupprivilege
      PG-Hokkaido

    • PG-Hub

      Apr 01, 2024

      • funguhub
      • default-credentials
      • lsp
      • lua
      • barracuda
      PG-Hub

    • PG-Hutch

      Apr 01, 2024

      • laps
      • ldap
      • ms-mcs-admpwd
      • pylaps
      • webdav
      • scheduled-task
      PG-Hutch

    • PG-Internal

      Apr 01, 2024

      • cve-2009-3103
      • ms09-050
      PG-Internal

    • PG-Jacko

      Apr 01, 2024

      • h2-console
      • path-fixing
      • god-potato
      • exploit-49382
      • paperstream
      • twain
      PG-Jacko

    • PG-Kevin

      Apr 01, 2024

      • hp-power-manager
      PG-Kevin

    • PG-MedJed

      Apr 01, 2024

      • barracuda
      • lua
      • xp-cmd-sh
      PG-MedJed

    • PG-Nagoya

      Apr 01, 2024

      • kerberoast
      • setuserinfo2
      • chisel
      • silver-ticket
      • seimpersonateprivilege
      • printspoofer
      PG-Nagoya

    • PG-Nibbles

      Apr 01, 2024

      • postgres
      • port5437
      • suid-find
      PG-Nibbles

    • PG-Nickel

      Apr 01, 2024

      • api
      • john2pdf
      • pdf
      • ssh-port-forward
      • psexec
      • scp
      PG-Nickel

    • PG-Nukem

      Apr 01, 2024

        PG-Nukem

      • PG-Payday

        Apr 01, 2024

        • cs-cart
        • lfi
        • default-credentials
        PG-Payday

      • PG-Pebbles

        Apr 01, 2024

        • sqli
        • zoneminder
        PG-Pebbles

      • PG-Pelican

        Apr 01, 2024

        • zookeeper
        • exhibitor
        • cve-2019-5029
        • exploit-48654
        • gcore
        PG-Pelican

      • PG-Resourced

        Apr 01, 2024

        • ntds-dit
        • genericall-computer
        • constrained-delegation
        • resourced-based-constrained-delegation
        PG-Resourced

      • PG-RubyDome

        Apr 01, 2024

        • pdfkit
        • cve-2022-25765
        • ruby
        • bash-p
        PG-RubyDome

      • PG-Shenzi

        Apr 01, 2024

        • always-install-elevated
        • wordpress
        • msi
        PG-Shenzi

      • PG-Slort

        Apr 01, 2024

        • rfi
        • php-data-filter
        • tftp-exe
        PG-Slort

      • PG-Snookums

        Apr 01, 2024

        • simple-photo-gallery
        • simple-php-gal
        PG-Snookums

      • PG-Squid

        Apr 01, 2024

        • squid
        • default-credentials
        • phpmyadmin
        • into-outfile
        • fullpowers
        PG-Squid

      • PG-Sybaris

        Apr 01, 2024

        • redis
        • ld-library-path
        • cron
        PG-Sybaris

      • PG-Twiggy

        Apr 01, 2024

        • zeromq
        • zmtp
        • cve-2020-11651
        • cve-2020-11652
        PG-Twiggy

      • PG-Vault

        Apr 01, 2024

        • shortcut-file
        • responder
        • sebackupprivilege
        • serestoreprivilege
        • gpo
        PG-Vault

      • PG-Wombo

        Apr 01, 2024

        • redis
        PG-Wombo

      • PG-ZenPhoto

        Apr 01, 2024

        • zen-photo
        • linux-2-6-32
        PG-ZenPhoto

      • PG-bullyBox

        Apr 01, 2024

        • box-billing
        • cve-2022-3552
        • git-dumper
        • git
        • bash-p
        PG-bullyBox

      • Home

        Apr 20, 2021

          Home


        Created with Quartz v4.5.0 © 2025

        • GitHub
        • Discord Community