Complete Linux privilege escalation methodology — SUID binaries, cron abuse, kernel exploits, capabilities, Docker escape, NFS, PA…
lazyhackers
Complete Windows privilege escalation guide — token impersonation, Potato attacks, unquoted service paths, DLL hijacking, AlwaysIn…
lazyhackers
Full security assessment walkthrough for Baby on Vulnlab. Includes reconnaissance, enumeration, exploitation steps, and a professi…
lazyhackers
Full security assessment walkthrough for Escape on Vulnlab. Includes reconnaissance, enumeration, exploitation steps, and a profes…
lazyhackers
Full security assessment walkthrough for Sweep on Vulnlab. Includes reconnaissance, enumeration, exploitation steps, and a profess…
lazyhackers
Full walkthrough of HackTheBox Push Pro Lab — exploiting Gitea open registration, Drone CI pipeline injection, Docker socket conta…
lazyhackers
Complete walkthrough of HackTheBox Sidecar Pro Lab — exploiting SSRF to steal Kubernetes service account tokens, abusing Istio sid…
lazyhackers
Full walkthrough of HackTheBox Tengu Pro Lab — exploiting ASP.NET ViewState deserialization for RCE, Neo4j Cypher injection to ext…
lazyhackers
Full walkthrough of HackTheBox Kaiju Pro Lab — Apache Struts2 RCE for initial access, Jenkins credential pivot, Exchange ProxyShel…
lazyhackers
Full walkthrough of HackTheBox Tea Pro Lab — exploiting a Gitea CVE for unauthenticated RCE, decrypting Ansible Vault secrets for …
lazyhackers