This Post is all about my approach to C|EH Practical. What is C|EH Practical? C|EH Practical is a six-hour, rigorous exam that requires you to demonstrate the application of ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, web app hacking, etc. in order to solve security audit […]
CTF
Yogosha Hackitivist Challenge 2019
I started with hackitivist1 and found that the provided link was vulnerable to blind SQLI, so I started digging more into it. As you can see in the picture below (Figure 1) that after running SQLMAP, I was able to find the database. And then after, I found the username, password, and secret key Unfortunately, […]
HTB Obscurity Writeup
Enumeration ports=$(nmap -p- –min-rate=1000 -T4 10.10.10.168 | grep ^[0-9] | cut -d ‘/’ -f 1 | tr ‘\n’ ‘,’ | sed s/,$//)nmap -sC -sV -p$ports 10.10.10.168 | tee nmap.txt Ports 22 and 8080 are open, which are associated with SSH and HTTP Server. The HTTP webpage is always worth a visit. Upon examination of the […]