CTF Writeups
HTB Sense: Hacking The Firewall
Directory bruteforcing pfSense firewall to discover admin credentials, then exploiting CVE-2014-4688 for remote command execution as root.
Articles
CTF Writeups
HTB Arctic: Remote Command Execution to JuicyPotato Privesc
Adobe ColdFusion 8 directory traversal and file upload for RCE, then SYSTEM access via JuicyPotato on Windows Server 2008.
CTF Writeups
HTB Return: LDAP Credential Theft to Service Hijacking
Abusing a printer admin panel to intercept LDAP credentials via netcat listener, then escalating privileges through Windows service configuration hijacking.