WordPress Backdoor Plugin: A Complete Phishing Scheme

I have recently read a post stating that WordPress administrators have been emailed fake WordPress security advisories for a fictitious vulnerability tracked as CVE-2023-45124 to infect sites with ...

Dec 6, 2023 WordPress

Android4 Walkthrough

This is going to be a quick one - today I’m hacking into Android4! It is an Android-based VM you can compromise in a couple of simple steps using ADB or PhoneSploit. It is a good VM to start with A...

Nov 15, 2023 Walkthroughs

NullByte Walkthrough

Today I’m hacking into NullByte! This is one of the many beginner-friendly OSCP-like CTFs of Vulnhub. So it’s a great starting point for preparing the OSCP tests. Methodology Reconnaissance ...

Nov 14, 2023 Walkthroughs

OSCPath Week 8: Tunneling Through Deep Packet Inspection (DPI) and The Metasploit Framework

The part regarding tunneling will be mainly theory and concepts that will be later applied during our engagements but I will try to make the Metasploit part a bit more practical and provide some...

Sep 28, 2023 OSCP

OSCPath Week 7: Port Redirection and SSH Tunneling

Welcome to week 7 of this OSCP Prep series. This week we will be covering port redirection and SSH tunneling - two essential techniques in the realm of network security and penetration testing. Thi...

Sep 21, 2023 OSCP