This page has my CTF writeups, exam prep notes, methodologies, cheatsheets, and random notes, basically everything I’ve learned and figured I should share.
Check out the Tools I use, Cheatsheets for quick refs, and CTF-Writeups from boxes I’ve popped. Hope it helps!
upoaded .htaccess to bypass filter and got rce and then privesc by kerberoasting and SeManageVolume priv.
PORT STATE SERVICE VERSION 53/tcp open domain Simple DNS Plus 88/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 2026-04-04 18:55:23Z) 135/tcp open msrpc …
nmap -p- 192.168.167.127 -Pn -sCV -A --min-rate=20000 Starting Nmap 7.95 ( https://nmap.org ) at 2026-04-03 09:32 EDT Warning: 192.168.167.127 giving up on port because retransmission cap hit (10). Nmap scan …
exposed api endpoint gave weak creds , privesc with web hosted taking arguments.
initial access through wordpress and rpivesc with Always install Elevated.
Initial Access with RFI and privesc with scheduled task.