Gandalf AI Challenge Walkthrough: Mastering Prompt Injection Techniques
January 3, 2025
A complete walkthrough of the Gandalf AI challenge, demonstrating various prompt injection techniques from basic to advanced levels.
Read moreBLOG
Active Directory Cross-Forest Kerberos Authentication
January 2, 2025
Understanding trust relationships and Kerberos authentication across Active Directory forests - essential knowledge for enterprise security and penetration testing.
Read moreLinux Privilege Escalation Guide
November 8, 2024
A comprehensive guide to Linux privilege escalation techniques for penetration testers and CTF players, covering SUID exploitation, cron jobs, environment variables, and more.
Read moreActive Directory Penetration Testing Guide
August 15, 2024
A comprehensive guide to Active Directory penetration testing techniques, from reconnaissance to post-exploitation and persistence.
Read moreMy CRTP Certification Journey
February 10, 2024
My experience with the Certified Red Team Professional (CRTP) course, lab, and certification exam from Altered Security.
Read moreAWS Cognito Security Misconfigurations
January 15, 2024
A comprehensive guide to identifying and exploiting AWS Cognito misconfigurations during penetration testing and bug bounty hunting.
Read moreFinding Credentials with GitHub Dorking
December 23, 2023
How I discovered credentials in a GitHub repository using dorking techniques and reported it through a vulnerability disclosure program.
Read more