Enumerating Kerberos Delegations in Active Directory Using ldapsearch
Identifying unconstrained, constrained, and resource-based constrained delegation in AD
drewbyte
Redirection of Non-Existent .ph and .com.ph Domains
This report covers the Infostealer campaign known as the FakeCaptcha/Click-Fix Campaign. Background On March 4, 2025, an alert was triggered after a suspicious PowerShell script ran on a user’s m...
Leveraging unshadow in Password Auditing
Using unshadow to combine passwd and shadow files for password cracking
Exploiting Writable /etc/passwd for Root Access
Understanding how writable /etc/passwd can lead to privilege escalation
Joy Writeup - VulnHub
Joy is a beginner-to-intermediate level boot2root challenge hosted on VulnHub. The machine exposes multiple misconfigured services across FTP, HTTP, SMB, SMTP, and SNMP, requiring thorough enumera...
Secura Writeup - OSCP Lab
Detailed security assessment write-up for the Secura Lab.
Certified Penetration Tester Specialist
Tips and insights on passing the Certified Penetration Tester Specialist
First 4 CVEs
My first 4 CVEs from vulnerability hunting.
Certified Web Exploitation Specialist
HTB Certification and tips for passing the CWES exam.
ASEAN Cyber Shield 2024
Representing the Philippines at ASEAN Cyber Shield 2024, finishing 15th place.