Los dispositivos IoT, como las pulseras de actividad, son cajas negras para la mayoría de los usuarios. Funcionan, pero ¿cómo? ¿Qué secretos guardan sus protocolos de comunicación? A veces, para co...
Hello! In this write-up, we will dive into the DockerLabs machine ConsoleLog. Let’s go! Active recognition As a first step, we will execute the ping command to verify that the target machine i...
Hello! In this write-up, we will dive into the DockerLabs machine Trust. Let’s go! Active recognition As a first step, we will execute the ping command to verify that the target machine is act...
Hello! In this write-up, we will dive into the HackTheBox seasonal machine Editorial. It is a Linux machine on which we will carry out a SSRF attack that will allow us to gain access to the system...
Hello! In this write-up, we will dive into the HackTheBox Perfection machine. It is a Linux machine on which we will carry out a CRLF attack that will allow us to do RCE in order to get a Reverse ...
Hello! In this write-up, we will dive into the Vulnhub Jangow machine. It is a Linux machine on which we will carry out an exhaustive enumeration. We will take advantage of a web shell provided by...
Hello! In this write-up, we will dive into the HackTheBox Clicker machine. It is a Linux machine on which we will take advantage of an nfs unit which will give us access to the application code fi...
Hello! In this write-up, we will dive into the HackTheBox Codify machine. It is a Linux machine on which we will take advantage of remote command execution in a NodeJS sandbox, we will get a rever...
Hello! In this write-up, we will dive into the HackTheBox Sau machine. It is a Linux machine on which we will carry out a SSRF attack that will allow us to access an HTTP service that was filtered...
Hello! In this write-up, we will dive into the HackTheBox Devvortex machine. It is a Linux machine on which we will carry out a Web enumeration that will lead us to a Joomla application. When we h...