Posts
All the things I've posted.
Certified Red Team Operator (CRTO) Review
Published: at 10:08 AMShort review of the Certified Red Team Operator certification: course quality, lab environment, exam format and the AD/red teaming skills I realistically gained from it.
HTB • CTF • Cicada • Write-Up
Published: at 01:14 PMHack The Box CTF - Cicada. SMB shares, password spraying, RID brute-forcing, PrivEsc via Token Abuse
Setup ELK and monitor App's Logs
Updated: at 06:05 AMHow I wired a simple blog app’s logs into Elasticsearch: quick ELK + Nginx setup and a Winston + winston-elasticsearch logger inside a TypeScript ElysiaJS/Bun backend.
HTB • CTF • Chemistry • Write-Up
Updated: at 10:46 AMHack The Box CTF - Chemistry. Pymatgen CIF parser RCE, Credentials from SQLite database, Python aiohttp app vulnerable to path traversal (CVE-2024-23334).