Archive of stories published by R3d Buck3T

Homepage

Open in app

All

Nairuz Abulhul in R3d Buck3T

May 26, 2021

Bypass IP Restrictions with Burp Suite

Automatically add headers to all Burp requests to bypass basic WAF rules

1 response

Nairuz Abulhul in R3d Buck3T

Mar 22, 2021

WINDOW PRIVILEGE ESCALATION

Impersonating Privileges with Juicy Potato

Windows Privilege Escalation with SeImpersonatePrivilege, and SeAssignPrimaryTokenPrivilege

3 responses

Nairuz Abulhul in R3d Buck3T

Oct 18, 2021

Privilege Escalation with MySQL User Defined Functions

2 responses

Nairuz Abulhul in R3d Buck3T

Jul 3, 2021

XSS to Exfiltrate Data from PDFs

Inject Server-Side XSS into dynamically generated PDFs

4 responses

Nairuz Abulhul in R3d Buck3T

Nov 25, 2020

Insecure Deserialization with JSON .NET

Remote Code Execution through Insecure Deserialization Vulnerability

1 response

Nairuz Abulhul in R3d Buck3T

Nov 19, 2021

WEB SECURITY

RCE with Server-Side Template Injection

Nairuz Abulhul in R3d Buck3T

Mar 9, 2022

ACTIVE DIRECTORY — KERBEROS ATTACKS

Attacking Kerberos Constrained Delegation

1 response

Nairuz Abulhul in R3d Buck3T

Feb 2, 2022

ACTIVE DIRECTORY — KERBEROS ATTACKS — PRIVILEGE ESCALATION

Attacking Service Accounts with Kerberoasting

Forge Service Tickets (TGS) with Kerberoasting MITRE ATT&CK ID: T1558.003, Active HTB machine

2 responses

Nairuz Abulhul in R3d Buck3T

Jul 26, 2021

WINDOWS SECURITY SERIES

Windows PrivEsc with SeBackupPrivilege

Obtain NTLM hashes in Windows Domain Controller machines

Nairuz Abulhul in R3d Buck3T

Sep 6, 2021

Exploiting a Misconfigured NFS Share

Network File Shares, Network Exploitation, Metasploitable

These were the top 10 stories published by R3d Buck3T; you can also dive into yearly archives: 2020, 2021, 2022, 2023, and 2024.

About

R3d Buck3T

R3d Buck3T focuses on Penetration Testing & Vulnerability Assessment (Red Teaming).My goal is to document what I learn, and share the knowledge with the InfoSec Community

More information