UltraTech
A step-by-step guide to rooting the UltraTech machine, covering API enumeration, command injection, hash cracking, and Docker privilege escalation.
A step-by-step guide to rooting the UltraTech machine, covering API enumeration, command injection, hash cracking, and Docker privilege escalation.
A comprehensive guide to exploiting Gila CMS vulnerabilities and performing Linux privilege escalation through tar wildcard cron job exploitation.
Exploit insecure file upload functionality, gain reverse shell access, and escalate privileges via SUID Python binary.

Exploit Ghostcat vulnerability (CVE-2020-1938) on Apache Tomcat, decrypt PGP credentials, and escalate privileges via sudo zip misconfiguration.
Exploit SweetRice CMS vulnerabilities, crack weak passwords, upload a web shell, and escalate privileges through sudo misconfiguration.
Exploit default Apache Tomcat credentials to upload a reverse shell and escalate privileges via a cron job misconfiguration.
Enumerate services, scan TCP/UDP ports, exploit WordPress vulnerabilities, and escalate privileges to capture flags in this Mr. Robot-themed CTF.
Exploit SMB misconfigurations to access sensitive files, upload a web shell, and escalate privileges using token impersonation on Windows Server 2016.
Compromise a Joomla CMS account via SQL injection, crack password hashes, and escalate privileges using a YUM misconfiguration.
Learn how to brute-force a website login, exploit a public vulnerability, and escalate privileges on a Windows machine in this TryHackMe HackPark writeup.
A step-by-step guide to exploiting Jenkins misconfiguration and performing Windows token impersonation privilege escalation.
A step-by-step guide to rooting the Steel Mountain machine on TryHackMe, inspired by Mr. Robot.