Category: WriteUps
-
HackTheBox : Precious
Hello everyone, in this writeup we are going to complete the Precious machine on HackTheBox. Here is a little summary of the box : Initial access As usual, we are going to start with an nmap scan to discover what kind of services are running and accessible on the target machine. We can find an…
-
TryHackMe : MD2PDF
Hi ! Today we are going to take a look at the MD2PDF machine on TryHackMe ! This machine is a web server hosting a service that allows us to convert markdown files to PDFs. If not done properly, it is easy to miss something when developing this kind of applications and have a big…
-
OWASP : Pixi
Hey, in this post we are going to look at a few of the (intentionally many) vulnerabilities present in the Pixi webapp, created by the OWASP as a platform for people to learn what not to do when creating web applications. Here is a summary : Broken secret When we create an account and login…