OffSec Proving Grounds Practice Walkthrough: Helpdesk
Helpdesk is an easy level of difficulty that focuses on a directory traversal vulnerability in the software the endpoint is hosting....
top of page
Cybersecurity blog
Search
z3r0day_504
- Apr 25
- 1 min
Threat Groups Series: Dark Caracal
Dark Caracal emerged in the early 2010s and is believed by several sources to be related to the Lebanese General Directorate of General...
46 views0 comments
z3r0day_504
- Apr 4
- 2 min
Threat Groups Series: APT 41
To kick off my threat groups series, I've decided to start with APT 41, highly suspected to be based out of China. Source of a large...
82 views0 comments
z3r0day_504
- Mar 14
- 2 min
Basic Static Analysis of Raccoon Stealer
In today's blog post I'll be conducting some basic static analysis on Raccoon Stealer. Raccoon Stealer has been around for several years...
64 views0 comments
z3r0day_504
- Mar 6
- 2 min
HTB Walkthrough: Chatterbox
Enumeration Running an nmap scan shows which ports are open and available: We see that there are ports running unknown services. Google...
64 views0 comments
z3r0day_504
- Feb 20
- 2 min
HTB Walkthrough: Devel
Enumeration Start with an nmap scan: From there we can discern that ports 21 and 80 are open. Gaining Access Check port 21 (FTP) for...
24 views0 comments
z3r0day_504
- Feb 10
- 6 min
How to Identify Online Scammers Before It's Too Late: The Story of Totyo and The Treadmill
We hear about scams all the time, whether it's through phishing, vishing, smishing, or whatever malevolent ishing-for-your-money there is...
31 views0 comments
z3r0day_504
- Feb 7
- 3 min
HTB Walkthrough: Photobomb
Enumeration Upon enumerating with nmap we discover that ports 22 and 80 are open. When we navigate to the IP address via the browser, we...
22 views0 comments
z3r0day_504
- Jan 16
- 3 min
HTB Walkthrough: Precious
Enumeration To start working on this box, we'll first run an nmap scan against it to see what ports are open and what services are...
1,031 views0 comments
z3r0day_504
- Jan 9
- 1 min
Metamorfo MSI Analysis and IOC Extraction
In this blog post, we'll be doing some basic analysis of a Metamorfo MSI package. According to MITRE, Metamorfo is a Latin American...
31 views0 comments
z3r0day_504
- Dec 19, 2022
- 3 min
Mimikatz 101
If you're new to the infosec/offsec space, the name "Mimikatz" may be foreign or quite vaguely familiar; however, for the folks that have...
236 views0 comments
z3r0day_504
- Nov 28, 2022
- 3 min
HTB Walkthrough: Shoppy
Tools and Resources NoSQLMap: https://github.com/codingo/NoSQLMap GTFOBins: https://gtfobins.github.io/ PayloadAllTheThings:...
172 views0 comments
z3r0day_504
- Nov 9, 2022
- 4 min
Hacker101 CTF: Micro-CMS v1 Walkthrough
Walkthrough for Micro-CMS v1 challenge on the HackerOne Hacker101 CTF
46 views0 comments
z3r0day_504
- Oct 3, 2022
- 2 min
Meeting the 3 Headed Dog: Kerberos Authentication Basics
If you've been in the information security or network administration community for some period of time, chances are you've heard of...
101 views0 comments
z3r0day_504
- Sep 12, 2022
- 2 min
Pass the Hash vs Overpass the Hash
A common technique to leverage once a user's credentials have been harvested is passing the hash; how does that differ from "overpassing...
1,203 views0 comments
z3r0day_504
- Aug 22, 2022
- 3 min
What is an AMSI bypass?
You may have heard about an AMSI bypass in the context of a work conversation, but what exactly is it and how does it work? Read on to...
236 views0 comments
z3r0day_504
- Aug 1, 2022
- 5 min
CRTP Course and Exam Review
Are you considering taking Pentester Academy's Attacking and Defending Active Directory course? Read on and find out more about it and...
1,772 views0 comments
z3r0day_504
- Jul 25, 2022
- 2 min
Precious Metals: Golden and Silver Ticket Attacks
If you're in the realm of cybersecurity, you're probably already aware of the fact that most if not all processes and architectures are...
184 views0 comments
z3r0day_504
- Jun 27, 2022
- 2 min
From the User Perspective - Emotet Phish
In a previous post we covered what it looks like from the user perspective when a Trickbot phish is opened. In this post, I'll briefly...
111 views0 comments
z3r0day_504
- Jun 6, 2022
- 2 min
From the User Perspective - TrickBot Phish
Most of the posts covered in this blog so far show the static analysis piece of documents, spreadsheets, and PDFs utilizing tools on...
79 views0 comments
Home: Subscribe
CONTACT
bottom of page