Conversor
Walkthrough of the Conversor machine – web app XSLT injection, credential cracking from SQLite, and sudo privilege escalation with needrestart.
Walkthrough of the Conversor machine – web app XSLT injection, credential cracking from SQLite, and sudo privilege escalation with needrestart.
A detailed walkthrough of the Expressway machine, covering IPsec enumeration, PSK hash cracking, and Sudo host-based privilege escalation.

PortSwigger Web Security Academy - File upload vulnerabilities labs
RootMe challenge walkthrough - Command Injection
RootMe challenge walkthroughs - NoSql Injection Authentication, String, Numeric, Error, Time Based, Blind

PortSwigger Web Security Academy - NoSQL injection labs

PortSwigger Web Security Academy - OS Command Injection labs
RootMe challenge walkthroughs - SQL Injection Authentication, String, Numeric, Error, Time Based, Blind
RootMe challenge walkthroughs - JavaScript Source, Obfuscation, and Authentication

PortSwigger challenge walkthroughs - File Path Traversal
RootMe challenge walkthrough - Exposed .git
RootMe challenge walkthrough - Directory Traversal