Wrong Variable Name Leads To RCE | CVE-2025–52130Back in May this year I spent some time going through PHP applications on Github , with a single goal in mind — to find my first CVE.Aug 23Aug 23
How I Found Multiple CVEs in InnoShop ≤0.4.1In today’s blog post, I’ll be covering three vulnerabilities that I recently discovered and disclosed, which affect all versions of…Jun 22A response icon1Jun 22A response icon1
HackTheBox “Down” Walkthrough | TheHikerToday I’ll be covering the new “Down” machine from HackTheBox. This machine was retired straight away, and is the first machine that has…Jun 17A response icon1Jun 17A response icon1
Published inSystem WeaknessUnderstanding & Investigating Kerberos AttacksActive Directory is the engine behind almost any organization. Data shows that anywhere between 90 and 95 percent of fortune 1000 companies…Feb 17A response icon1Feb 17A response icon1
HackTheBox — CrownJewel-1 Walkthrough | TheHikerHello everyone! Today I’ll be doing something different then usual — a walkthrough for an HTB “sherlock” named “CrownJewel-1” ! We will…Feb 11Feb 11
Lustrous — A VulnLab Chain Walkthrough | TheHikerIn today’s walkthrough, I’ll be guiding you through the “Lustrous” AD chain on VulnLab. We will cover AS-REP roasts, Kerberoasts, and a…Jan 16Jan 16
Reflection — A VulnLab Chain Walkthrough | TheHikerIn today’s walkthrough, I’ll be guiding you through the “Reflection” chain on VulnLab. This was a unique chain, where you actually don’t…Jan 13Jan 13
Silver-Platter , TryHackMe Walkthrough | TheHikerHello everyone, today I’ll be covering the “Silver-Platter” room on TryHackMe. I think that this room is great for intermediate students…Jan 12A response icon4Jan 12A response icon4
Tengu — A VulnLab Chain Walkthrough | TheHikerHello everyone! Today I’ll be covering the “Tengu” chain from VulnLab .Jan 8Jan 8
VulnLab — Lock Walkthrough | TheHikerHello again! Today we will be exploring the “Lock” machine from Vulnlab!Dec 4, 2024Dec 4, 2024
