Completed the dante lab on hack the box it was a fun experience pretty easy.
Passed the CRTP Exam owned Active directory network
Passed the CRTP Exam owned Active directory network from the pentester academy.
Released my first Hard box on HTB Pikaboo
Pikaboo was my first hard box on HTB with 3 layers of abstraction. First exploit path traversal to get in nginx to get access to a admin panel to exploit LFI inclusion in order to get code execution via log poisoning FTP. Exploit ldap injection to get user pwnmeow and..Read More
Got bug killer badge for find a bug in Hack the box platform
Got bug killer badge for find a bug in Hack the box platform
Got assigned 21 CVE’s for wordpress 0 days
I got assigned 21 plus cve’s for WordPress 0 days finding SQL injections and other bugs in WordPress plugin repository
Published First Exploit on Exploit DB
So first exploit published on Exploit DB found this during trying to find unintended ways to solve `Love` the box I made recently on @hackthebox_eu.
Got my first CVE. CVE-2021-24337
I got my first CVE in video-embed-box Subscriber level SQLI. CVE-2021-24337. It was a union based SQLI which is also time based exploitability Disclosure link https://www.codevigilant.com/disclosure/2021/wp-plugin-video-embed-box/
Released Love
My first machine Love was selected and released on hackthebox. it is an intentionally vulnerable windows machine with common windows vulnerabilities and common privilege escalation.
OSCP
I completed OSCP on 14th October 2020
OWASP Seasides CTF 6th Place
International Capture the flag competition from OWASP Seasides. I completed under top 10 with 6th rank spot MachineHacker we completed this CTF with the top 6th place there were 530 players among which we ranked 6th. there were 29 challenges from which we completed 28 of 29