Skip to content

Babdcatha.net

About this site
Privacy Policy

Search

BabdCatha.net : a blog about cybersecurity.

EntraGoat: Scenario 2

Hello again! This time we’re going to go through the second scenario of the EntraGoat environment. This time, we get the account of a lady named Jennifer Clark, and are given a pfx certificate that was apparently leaked through a CI/CD misconfiguration. Once again, let’s start by enumerating the Tenant with the basic account we…

14/02/2026
EntraGoat: Scenario 1

After almost two years since my last post, I’m back 🙂 This time, with a small write up from the EntraGoat CTF/Training environment. After setting up the environment with a free tenant we get the user we are going to be using for this first challenge, David Martinez. The first thing I did with it…

24/01/2026
Damn Vulnerable Arm Router Writeup

Hi, coming back after a few months, I wanted to try something a little different. Today, We will be taking a look at the Damn Vulnerable Arm Router (DVAR) machine from Saumil Shah. The goal of this machine is to find and exploit a buffer overflow vulnerability on a simulated router running on an ARM…

17/03/2024