Blog Posts

Exploiting log4j | Apache Solr

Log4j is a popular Java library maintained by the Apache foundation used as a logging framework for Java. Around Friday 10th December...

Post compromise analysis | Overpass 2

In this write up, we will be playing the role of an incident responder, post compromise of a system. The task is to identify what the...

How to use Hydra to brute force login forms.

Hydra is a very powerful and fast password cracking tool which can also perform dictionary attacks against a wide range of protocols such...

15,704 views0 comments

Exploiting log4j | Apache Solr

Log4j is a popular Java library maintained by the Apache foundation used as a logging framework for Java. Around Friday 10th December...

6,245 views0 comments

Attacktive Directory

This will be my first of many Active Directory themed blogs focused around exploitation. I have recently been exposed to a lot of Active...

Exploit development BOF

Buffer Overflow This blog post is my attempt in trying to explain how to perform a buffer overflow in preparation for the OSCP. I have...