Complete walkthrough of HackTheBox Sidecar Pro Lab — exploiting SSRF to steal Kubernetes service account tokens, abusing Istio sid…
Full walkthrough of HackTheBox Tengu Pro Lab — exploiting ASP.NET ViewState deserialization for RCE, Neo4j Cypher injection to ext…
Full walkthrough of HackTheBox Kaiju Pro Lab — Apache Struts2 RCE for initial access, Jenkins credential pivot, Exchange ProxyShel…
Full walkthrough of HackTheBox Tea Pro Lab — exploiting a Gitea CVE for unauthenticated RCE, decrypting Ansible Vault secrets for …
Complete walkthrough of HackTheBox Klendathu Pro Lab — exploiting an exposed Terraform state file for cloud credentials, AWS IMDSv…
Complete step-by-step walkthrough of HackTheBox Heron Pro Lab — all 21 flags covered across 6 machines. Flask Jinja2 SSTI → pip in…
Full walkthrough of the HackTheBox AWS Fortress. Covers S3 public bucket credential leakage, IAM privilege escalation via AssumeRo…
Full walkthrough of the HackTheBox Faraday Fortress. Covers hardcoded API key in JavaScript source, IDOR on vulnerability reports,…
Complete walkthrough of both Synacktiv HTB Fortress versions. v1 covers path traversal double-encoding, SSTI Jinja2 RCE, and PHP d…
Full walkthrough of the HackTheBox Akerva Fortress. Covers timing-based username enumeration, predictable md5+timestamp reset toke…