Secure Secret Retrieval in AWS Lambda
A Practical Lab in Eliminating Hardcoded Credentials Using AWS Secrets Manager and IAM
AWS LambdaAWS Secrets ManagerIAMCloud Security
Read more →
AWS Lab Walkthrough: Troubleshooting IAM Access Issues
Learn how to troubleshoot IAM role assumption failures by aligning identity-based policies and trust relationships while maintaining least privilege.
AWSIAMTroubleshooting
Read more →
Exploiting AlwaysInstallElevated for Windows Privilege Escalation
A walkthrough of exploiting the AlwaysInstallElevated misconfiguration on Windows to escalate from user to SYSTEM using a malicious MSI payload.
Read more →
Devel Rooted: A Hack The Box Walkthrough
This post is a walkthrough of the 'Devel' retired machine from Hack The Box. I gain initial access through an exposed FTP and WebDAV setup, then escalate privileges using MS15-051.
hacktheboxwindowsinitial-accessftp
Read more →
Anonymous Rooted: A TryHackMe Walkthrough
This walkthrough covers the TryHackMe 'Anonymous' room. I gain user-level access via FTP and a writable script, capture the user flag, and escalate to root via a SUID misconfiguration.
TryHackMeinitial-accessftpreverse-shell
Read more →
Compromising the Dev Box: A PNPT Walkthrough with Mitigation and MITRE ATT&CK Mapping
A step-by-step walkthrough of compromising the Dev Box from TCM Security’s PNPT training course, including detailed explanations, mitigation steps, and a comprehensive mapping to MITRE ATT&CK tactics and techniques.
PNPTMITRE ATT&CKPrivilege EscalationWeb Exploits
Read more →
Investigate Web Attacks Challenge Walkthrough (Let's Defend)
A detailed walkthrough of how to solve the 'Investigating Web Attacks Challenge' on Let's Defend using the bWAPP web application as the victim.
Web Application SecurityIncident ResponseCybersecurityLet's Defend
Read more →
Exploring Splunk Data Administration: Parsing, Event Line Breaking, and Data Privacy
Exploring Splunk Data Administration: Parsing, Event Line Breaking, and Data Privacy
Read more →
Escalate and Defend: Linux Kernel Exploit Walkthrough
Escalate and Defend: Linux Kernel Exploit Walkthrough
Blog
Read more →
Understanding SMB Relay Attacks and Mitigation Techniques
Understanding SMB Relay Attacks and Mitigation Techniques
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
IPv6 DNS Takeover with MITM6 in an Active Directory Environment
IPv6 DNS Takeover with MITM6 in an Active Directory Environment
CybersecurityOffensivemitm6Penetration Testing
Read more →
Understanding SMB Relay Attacks and Mitigation Techniques
Understanding SMB Relay Attacks and Mitigation Techniques
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
Understanding LLMNR Poisoning and Mitigation Techniques
Understanding LLMNR Poisoning and Mitigation Techniques
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
My Journey to eJPT Certification: Insights and Tips for Success
My Journey to eJPT Certification: Insights and Tips for Success
eJPTCertificationEthical HackingPenetration Testing
Read more →
Hacking Kenobi: From Anonymous Access to Root like a Rebel
Hacking Kenobi: From Anonymous Access to Root like a Rebel
Read more →
Rooting the Academy Box: A Practical Ethical Hacking Walkthrough
>
Penetration TestingEnumerationLinux Privilege EscalationWeb App Security
Read more →
Exploiting EternalBlue (MS17-010): A Walkthrough and Protection Measures
A detailed walkthrough of how to exploit the Eternal Blue vulnerability on a Windows 7 Ultimate machine, covering both manual and automated methods.
Penetration TestingEthical HackingCybersecurityVulnerability Exploitation
Read more →
TryHackMe Ignite Room Walkthrough: Exploiting Fuel CMS 1.4.1 RCE
Walkthrough of TryHackMe's Ignite room where we exploit a Remote Code Execution vulnerability in Fuel CMS 1.4.1 (CVE-2018-16763). Learn the steps of enumeration, exploitation, privilege escalation, and defense strategies.
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
Network Services - THM Walkthrough by Nisha
Learn about, then enumerate and exploit a variety of network services and misconfigurations.
Penetration TestingEthical HackingCybersecurityVulnerability Exploitation
Read more →
Linux Fundamentals I - TryHackMe Walkthrough By Nisha
Embark on the journey of learning the fundamentals of Linux. Learn to run some of the first essential commands on an interactive terminal..
Linux
Read more →
Introduction to Defensive Security - THM Walkthrough by Nisha
Introduction to Defensive Security - THM Walkthrough by Nisha
CybersecurityDefensiveBlue TeamTryHackMe
Read more →
Introduction to AWS Identity and Access Management (IAM)
A beginner-friendly walkthrough of managing users, groups, and permissions in AWS Identity and Access Management (IAM).
Read more →
Creating VNet-to-VNet Connections in Microsoft Azure
This walkthrough details how to create secure VPN Gateway connections between two Azure Virtual Networks using VNet-to-VNet tunneling. Learn how to configure VPN Gateways, establish encrypted connections, and verify the status—all from the Azure portal.
AzureVNetVPN GatewayNetworking
Read more →
How to Create Point-to-Site VPN Connections in Microsoft Azure
How to Create Point-to-Site VPN Connections in Microsoft Azure
CloudAzureNetworkingVPN
Read more →
How to Create Site-to-Site VPN Connections in Microsoft Azure
How to Create Site-to-Site VPN Connections in Microsoft Azure
CloudAzureNetworkingVPN
Read more →
Traffic Routing in Microsoft Azure with Network Virtual Appliacne (NVA)
Traffic Routing in Microsoft Azure with Network Virtual Appliacne (NVA)
CloudAzureNetworking
Read more →
Configure Azure Load Balancer
Configure Azure Load Balancer
CloudAzureNetworking
Read more →
Create Inbound NAT Rules to Connect to a Single VM in Azure (Port-Forwarding)
Create Inbound NAT Rules to Connect to a Single VM in Azure (Port-Forwarding)
CloudAzureNetworking
Read more →
Deploy Azure Application Gateway to Direct Web Traffic
Deploy Azure Application Gateway to Direct Web Traffic
CloudAzureNetworking
Read more →
Deploy and Configure Azure Firewall and Rules to Allow/Deny Access to Certain Websites
Deploy and Configure Azure Firewall and Rules to Allow/Deny Access to Certain Websites
CloudAzureNetworkingFirewall
Read more →
Enable Session Stickiness Using an Application Load Balancer in AWS (ALB)
Learn how to configure session stickiness (sticky sessions) using an Application Load Balancer (ALB) in AWS.
Read more →
How to Deploy Amazon Connect Contact Center
A step-by-step guide to deploying an Amazon Connect Contact Center in AWS.
Read more →
How to Deploy a Secured Static Website on AWS
A guide to deploying a secured static website on AWS using S3, CloudFront, and related services.
Read more →
AWS Networking: Multi-VPC Architecture
An overview of designing and implementing a multi-VPC architecture in AWS for network segmentation and scalability.
Read more →
Enable Inter-VPC Connectivity Using Peering Connections in AWS
Learn how to enable inter-VPC connectivity using VPC peering connections in AWS.
Read more →
Enable Inter-VPC Connectivity With AWS Transit Gateway
A guide to enabling inter-VPC connectivity using AWS Transit Gateway for scalable network architecture.
Read more →
Configure Network Monitoring in AWS
Learn how to configure network monitoring in AWS using VPC Flow Logs, CloudWatch, and related tools.
Read more →
Implement Security Controls in AWS
A walkthrough of implementing essential security controls in AWS to protect your cloud infrastructure.
Read more →
Windows Fundamentals 1 - TryHackMe Walkthrough
Windows Fundamentals 1 - TryHackMe Walkthrough
CybersecurityKaliRDPTools
Read more →
Vulnerability Scanning with OpenVAS: Unveiling Cybersecurity Insights
Learn how to use OpenVAS for vulnerability scanning and gain actionable cybersecurity insights from the results.
Read more →
Splunk Basics / Splunk 101 (TryHackMe Walkthrough)
Splunk Basics / Splunk 101 (TryHackMe Walkthrough)
CybersecuritySIEMSplunkLog Management
Read more →
Incident Handling With Splunk / Splunk 201 (TryHackMe Walkthrough)
Incident Handling With Splunk / Splunk 201 (TryHackMe Walkthrough)
CybersecuritySIEMSplunkLog Management
Read more →
Create Virtual Networks in Azure
A step-by-step guide to creating and configuring virtual networks in Microsoft Azure.
Read more →
Identity and Access Management: Azure Policy
Learn how to use Azure Policy for governance and compliance in Microsoft Azure identity and access management.
Read more →
Identity and Access Management: Resource Manager Locks in Azure
A guide to using Azure Resource Manager Locks to protect critical resources from accidental deletion or modification.
Read more →
Identity and Access Management: Role-Based Access Control (RBAC)
Learn how to implement Role-Based Access Control (RBAC) in Azure for fine-grained identity and access management.
Read more →
How to Configure DNS Settings in Microsoft Azure
How to Configure DNS Settings in Microsoft Azure
Azure
Read more →
Vulnerability Scanning with Nmap: Network Scanning
Learn how to use Nmap for network scanning and vulnerability assessment in cybersecurity.
Read more →
How to Create Configure a DMZ on Palo Alto FIrewall
How to Create Configure a DMZ on Palo Alto FIrewall
Network SecurityCybersecurityNetworkingFirewall
Read more →
Vulnerability Scanning with Nessus
A guide to using Nessus for vulnerability scanning and security assessment of your infrastructure.
Read more →
Introduction to Offensive Security - THM Walkthrough by Nisha
Introduction to Offensive Security - THM Walkthrough by Nisha
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
The Art of Reconnaissance in Cybersecurity
The Art of Reconnaissance in Cybersecurity
Cybersecurity
Read more →
Walking An Application - THM Walkthrough by Nisha
Walking An Application - THM Walkthrough by Nisha
CybersecurityOffensiveRed TeamWeb App
Read more →
Meow - HTB Walkthrough by Nisha
Meow - HTB Walkthrough by Nisha
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
Content Discovery - THM Walkthrough by Nisha
Content Discovery - THM Walkthrough by Nisha
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
Wireshark: The Basics - THM Walkthrough by Nisha
Wireshark: The Basics - THM Walkthrough by Nisha
CybersecurityDefensiveBlue TeamWireshark
Read more →
RootMe - TryHackMe Walkthrough
A complete walkthrough of the RootMe room on TryHackMe, covering web exploitation and privilege escalation techniques.
Read more →
Windows Event Logs (TryHackMe Walkthrough)
Windows Event Logs (TryHackMe Walkthrough)
CybersecurityWindowsLoggingMonitoring
Read more →
TryHackMe Walkthough - Post-Exploitation Basics
TryHackMe Walkthough - Post-Exploitation Basics
Cybersecurity
Read more →
How to Install Remmina on Kali Linux
How to Install Remmina on Kali Linux
Cybersecurity
Read more →
TryHackMe Ice - Walkthrough by Nisha
TryHackMe Ice - Walkthrough by Nisha
CybersecurityWindowsPenetration TestingEthical Hacking
Read more →
Steel Mountain - TryHackMe Walkthrough by Nisha
Hack into a Mr. Robot themed Windows machine. Use metasploit for initial access, utilise powershell for Windows privilege escalation enumeration and learn a new technique to get Administrator access.
TryHackMeCTFPrivilege EscalationWeb Exploits
Read more →
TryHackMe IDOR Room Walkthrough
TryHackMe IDOR Room Walkthrough
IDORWeb SecurityPentestingTryHackMe
Read more →
Dancing - HTB Walkthrough by Nisha
Dancing - HTB Walkthrough by Nisha
CybersecurityOffensiveRed TeamPenetration Testing
Read more →
TryHackMe: Enumeration & Brute Force Room Walkthrough
TryHackMe: Enumeration & Brute Force Room Walkthrough
Penetration TestingEnumerationBrute ForceOSINT
Read more →
LazyAdmin TryHackMe Walkthrough
A complete walkthrough of the LazyAdmin room on TryHackMe, demonstrating enumeration, exploitation, and privilege escalation.
TryHackMeCTFPrivilege EscalationWeb Exploits
Read more →