Reconnaissance Add machine IP to the hosts file. Conduct a port scan against irked.htb: sudo nmap -sV -p- --max-rate 10000 irked.htb Well, I'll check the web server directly -> I don't have background knowledge about IRC. That is why, let's check.
CTF Writeups
Reconnaissance Add the IP address of the machine to /etc/hosts: nano /etc/hosts Port Scanning Conduct port scan: sudo nmap -sV -sC cicada.htb, sudo nmap -sV -p- --max-rate 10000 cicada.htb Observe that I was dealing with AD structure: Domain Controller Hostname: commonName=CICADA-DC.cicada.htb Domain: cicada.
CTF Writeups
Map IP address to hosts file: nmap -sV -sC -p- --min-rate 5000 -T4 Unusual ports can be seen below: I never had DNS know-how, so I'll search for it. Technically it is not possible to attempt Zone Transfer, yet since I was in a CTF let me give
Published: October 14, 2025 Researcher: Onurcan Genç Independent Security Researcher CVE: CVE-2025-10228 USOM Advisory: TR-25-0336 Summary Field Value CVE ID CVE-2025-10228 Product Rolantis Agentis Framework Vendor Rolantis Information Technologies Affected Version Before v4.44 Vulnerability Type CWE-384: Session Fixation CVSS v3.1 Score 8.8 (High) CVSS Vector AV:N/
Vulnerability Research
Important: These PoCs are for an isolated, consented test environment only (e.g., local Bitnami Moodle Docker). Do not run tests against production or third-party systems. Use non-exfiltrative payloads (e.g., alert('stored-xss')) for public demonstrations. Redact any real usernames/hostnames in screenshots before publishing. Summary This PoC
Penetration Testing
Vulnerability Summary * Vulnerability Type: Insecure Direct Object Reference (IDOR) * Component: Moodle – OpenAI Chat Block Plugin (block_openai_chat) v3.0.1 (Build: 2025021700) * Endpoint: /blocks/openai_chat/api/completion.php * Vulnerable Parameter: blockId * Impact: Information Disclosure, Privilege Escalation, Potential Model Misuse * Attack Prerequisites: Authenticated low-privileged user (e.g., student or