Today, I am back with an interesting blog on vulnerability named Ghostcat. The Apache Ghostcat vulnerability is an LFI (Local File Inclusion) vulnerability which is discovered by a security researcher of Chaitin Tech and came out in February 2020, while the world was gearing up for a lockdown fight up against the coronavirus. It allows
Read MoreHello, Infosec Community !! Today let’s crack the Potato:1 Machine from Vulnhub. You can download the machine from here; ( https://www.vulnhub.com/entry/potato-1,529/ ) Description Difficulty: Easy to Medium Goal: Get the root shell i.e.(root@localhost:~#) and then obtain flag under /root). We are going to follow the PTES Standards for cracking the machine. So, let’s start
Read MoreHi Everyone…!!! I am back with another machine in this blog. In this beginner-friendly blog, we will learn how to deploy & hack into a Windows machine, leveraging common misconfigurations issues. This machine is based on Eternal blue vulnerability(CVE-2017-0143). Let’s ping the blue machine and make sure we are connected. Task 1: Recon In the
Read MoreHello Everyone…!!! It is nice to meet you all again with another walkthrough of the basic Pentesting machine available on TryHackMe. It covers Service Enumeration, Hash Cracking, Brute-Forcing through Hydra, and Privilege Escalation. So, let us get this test started. To make sure that we are connected to their network, I am using the ping
Read More