zacheller@home:~/blog$

  • Autopsy Digital Forensics Certificate

    Digital forensics first came on my radar in CTF competitions. Though I find those challenges fun, I quickly came to learn that they are not quite representative of real world digital forensics, usually done by law enforcement. I heard that there was a digital forensics course being offered for free...

  • TryHackMe - Basic Pentesting

    This room is about: brute forcing hash cracking service enumeration Linux Enumeration I thought this would be a good exercise to introduce my friend @jeongm-in from my CTF team to system exploitation. First we deploy the machine, and use OpenVPN to connect to the TryHackMe network. We run nmap (or...

  • pwnable.kr - fd

    Prompt Mommy! what is a file descriptor in Linux? ssh fd@pwnable.kr -p2222 (pw:guest) Solution We are given 3 files: fd, fd.c, and flag. We cannot open flag, but can read fd.c and run the executable. #include <stdio.h> #include <stdlib.h> #include <string.h> char buf[32]; int main(int argc, char* argv[], char* envp[]){...

  • HackTheBox - Resolute

    Target: 10.10.10.169, resolute.htb Scanning I use a portscan script that uses nmap to find all open ports, then runs a deeper nmap scan on those specific ports for efficiency. root@kali:~/HackTheBox/Resolute# portscan resolute.htb Open ports: 53,88,135,139,389,445,464,593,636,3268,3269,5985,9389,47001,49664,49665,49666,49667,49671,49676,49677,49688,49709,60468 Starting Nmap 7.80 ( https://nmap.org ) at 2020-04-19 15:30 EDT Nmap scan report for resolute.htb...