HackTheBox
HTB Beep: LFI to Root via Nmap Binary Exploitation
Elastix PBX exploitation via local file inclusion to extract credentials, then multiple paths to root including Nmap interactive mode abuse.
Latest research
Vulnerability Research
Applying Ethical Theories in Responsible Disclosure Program
How utilitarianism, deontology, and virtue ethics guide responsible vulnerability disclosure decisions. A framework for balancing public safety and vendor relationships.
HackTheBox
HTB Irked Writeup: UnrealIRCd Backdoor to Root via SUID Abuse
Exploiting the UnrealIRCd 3.2.8.1 backdoor for initial shell access, then escalating to root through a custom SUID binary on Linux.
CTF Writeups
HTB Cicada: From Password Spraying to Token Abuse
Active Directory machine: password spraying for initial foothold, LDAP enumeration, and domain admin access through SeBackupPrivilege token abuse.
CTF Writeups
HTB Bank: Chasing Balance Transfers to Root Shell
DNS enumeration reveals a hidden banking application. File upload restriction bypass for webshell access, then root via writable SUID binary.
Vulnerability Research
CVE-2025-60507 | Moodle GeniAI plugin v2.3.6: XSS via PDF Upload & Prompt Injection
Chained XSS and prompt injection in Moodle GeniAI plugin v2.3.6 via PDF upload. Demonstrates AI-integrated plugin security risks.