March 11, 2026

A comprehensive report on the Gandalf AI security challenges, demonstrating 8 progressive levels of prompt injection techniques from basic direct injection to advanced narrative-based attacks.

January 2, 2025

Understanding trust relationships and Kerberos authentication across Active Directory forests - essential knowledge for enterprise security and penetration testing.

November 8, 2024

A comprehensive guide to Linux privilege escalation techniques for penetration testers and CTF players, covering SUID exploitation, cron jobs, environment variables, and more.

August 15, 2024

A comprehensive guide to Active Directory penetration testing techniques, from reconnaissance to post-exploitation and persistence.

February 10, 2024

My experience with the Certified Red Team Professional (CRTP) course, lab, and certification exam from Altered Security.

January 15, 2024

A comprehensive guide to identifying and exploiting AWS Cognito misconfigurations during penetration testing and bug bounty hunting.

December 23, 2023

How I discovered credentials in a GitHub repository using dorking techniques and reported it through a vulnerability disclosure program.