Hello everyone , in this post I will be sharing my walkthrough for HTB-Forge machine which was a medium linux box , starting off with the nmap scan we see that there are three ports ftp ,ssh and http, ftp is filtered meaning that we can’t connect to it so…

When doing a black box pen testing for android , apart for looking at root detection bypass and ssl pinning looking for intents are also important , intents are the screens or activity of android application for example this InsecureBankv2 application has an activity for a login page which after…

For the demonstration of bypassing root detection I will be using a vulnerable apk known as insecurebankv2 which is quite showcased in talks and presentations however there are other vulnerable applications that you can try to practice black box test which involves root detection ,ssl pinning, defobfuscating code and calling…

Hello everyone , I will be creating a series of posts for android penetration which will cover how to setup your lab environment for testing apks , setting up rooted emulators , I will be using gennymotion as an emulator which is a virtual machine you can use on either…

Hello everyone , HTB reel was a hard difficulty active directory machine , starting off with the nmap scan we have only 3 ports , ftp , ssh and smtp being an active directory machine this may seem odd as kerberos service should be running but it didn’t really felt…

Hello everyone , in this post I will be sharing my writeup for HTB-Previse machine which was a easy difficulty linux machine ,starting off with the nmap we can only see 2 ports , from which port 80 had a web page which had a login page , trying sqli…

Hello everyone , in this post I will be sharirng my writeup for HTB-Mantis which is a really old windows active directory machine , starting off with the machine , there was a IIS sever running on port 1337 on which fuzzing for files reveal directory where it had a…

Hello everyone , in this post I will be sharing my writeup for HTB-BlackField which is a hard Active Directory box , starting off with enumeration we can see smb service is running and listing shares shows a share that we can access which has folders that are potential usernames…

Hello everyone , in this post I will be sharing my writeup for HTB-Cascade machine , which was a medium level Active Directory machine and I personally enjoyed this as I learned something new in AD so starting with the machine , enumerating rpc through null authentication we get some…

Hello everyone , in this post I will be sharing my walkthrough for HTB-Resolute machine which is a medium level AD machine , starting off with smb and ldap we can find usernames and in one the user’s descrption was a password which we performed a password spray attack to…

ARZ101

Pentester | CTF Player

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store