Microsoft has rolled back the changes to block VBA macros until further notice and they haven’t provided any explanations to their customers. Microsoft Office macros are well-known for being a powerful tool to automate daily tasks and boost productivity. However, macro malware makes use of this feature to infect endpoints. …

Password spraying is a technique of brute force attack. In this attack, attackers use a list of usernames and default passwords to brute force logins to accounts. …

Security researchers at an organization named “Volexity” has managed to identify an unauthenticated remote code execution zero day vulnerability that is being actively exploited in the Atlassian Confluence Server and Data Center instances in the wild. It has been further identified that Object-Graph Navigation Language (OGNL) has been the target…

It’s a well-known technique used by advisors to exfiltrate data by forwarding email outside the compromised network. According to Lockheed Martin Cyber Kill Chain, Exfiltration is one of the core stages that advisories use to get the data out of the compromised target. This process is range from reconnaissance (often…

It’s been a while since my last blog. I have been doing a few boxes but did not have a time to write a blog. I started doing medium types of boxes, which I found very challenging. …

Blocky is another easy machine that requires strong enumeration in resolving this box. This machine has Wordpress running, which reveals the key user name upon running Wpscan. This username will be used to login via SSH. Further enumeration on the machine, will reveal a couple of hidden files that contains…

HTB Granny box is quite similar to Grandpa box. I can’t find the difference between Grandpa and Granny. Therefore, i used a different approach in the way of escalating privileges. This box has vulnerable IIS version running which can be exploited using one of the publicly available exploits and gain…

Grandpa is another easy machine. Machine has vulnerable IIS version running. That version can easily be exploited using one of the publicly available exploits and obtain a low privilege shell which can be escalated to root or NT_Authority using Churrasco. Enumeration Began with usual Nmap scan

Blue is another easy machine, that is bit tricky when it comes to exploiting the machine. This machine is vulnerable to famous 17–010 vulnerability which is also known as EternalBlue. The exploit is publicly available and requires a series of steps to exploit the machine. Let’s get it started. Enumeration Started…