➜ ~
Playing Hacks and Stuffs!
Project maintained by h4ckyou Hosted on GitHub Pages — Theme by mattgraham
Main
Proving Grounds:
OffSec Proving Grounds (PG) Play and Practice is a modern network for practicing penetration testing skills on exploitable, real-world vectors.
- [[Mar 13 2023]] Scarlet
JWT Confusion Attack, SQLite Injection, ZipCrypto - [[Mar 04 2023]] Surf
Weak Authentication, SSRF, Sudo - [[Feb 28 2023]] Slort
LFI, Weak Permissions - [[Feb 24 2023]] Sona
Scripting, Python Library Hijack - [[Feb 24 2023]] Craft
Macros, File Upload, PrintSpoofer - [[Feb 14 2023]] Escape
File Upload, Docker, SNMP RCE, Reverse Engineering, Path Hijack, Capabilities - [[Jan 27 2023]] Readys
Wordpress, LFI, Redis, Cron - [[Jan 27 2023]] Peppo
Ident, Rbash, Docker - [[Jan 27 2023]] Breakout
Gitlab, Cron, Symbolic Link - [[Jan 26 2023]] XposedAPI
API, Remote Code Execution, Suid - [[Jan 26 2023]] Hetemit
Python Wergzeug Misconfiguration, Service Abuse - [[Jan 26 2023]] Twiggy
Salt API RCE - [[Jan 25 2023]] Assignment
Misconfiguration, Gogs, Command Injection - [[Jan 25 2023]] EmpireBreakout
Cryptography, Webmin, Capability - [[Jan 25 2023]] HelpDesk
ManageEngine ServiceDesk Plus - [[Jan 25 2023]] NullByte
Sqli, Reverse Engineering, Path Hijack - [[Jan 24 2023]] Flimsy
Outdated Web Server, Cron, Apt - [[Jan 24 2023]] Cassios
Source Code Review, Insecure Deserialization (Java), Sudoedit - [[Jan 24 2023]] Nappa
Command Injection - [[Jan 23 2023]] Born2Root
Cron, Misconfiguration, Weak Password - [[Jan 23 2023]] Lunar
PHP Type Juggling, LFI2RCE, NFS - [[Jan 23 2023]] Wheel
XPATH Injection, Reverse Engineering - [[Jan 22 2023]] Fractal
Symfony, Mysql, Ftp - [[Jan 21 2023]] Roquefort
Gitea, Path Hijack, Cron - [[Jan 21 2023]] BlackGate
Redis, ROP - [[Jan 21 2023]] Jacko
H2 Database, PaperStream IP - [[Jan 17 2023]] Internal
CVE-2009-3103 - [[Jan 17 2023]] PlanetExpress
RCE, Suid - [[Jan 17 2023]] Fantastic
Grafana, Disk Group - [[Jan 16 2023]] Squid
Squid Proxy, PHPMyAdmin - [[Jan 16 2023]] Bratarina
Open SMTP - [[Jan 16 2023]] Algeron
Smatter Mail - [[Jan 16 2023]] Dibble
Node JS, Command Injection, Suid