Vintage involves exploiting some legacy configurations in addition to doing things the "hard" way.

Administrator is an assumed breach scenario in active directory involving bloodhound, DACL abuse and more!

A retrospective on where I started and where I am now.

I recently took part in the Hack The Box Cyber Apocalypse CTF with my team, Where I completed all the ai prompt injection challenges.

Certified is an assumed breach scenario in active directory with a complex attack chain exploiting various misconfigurations.

In Chemistry we attack a Linux host starting by exploiting a RCE in a CIFs analyzer python application.

In Instant we attack a linux host starting with a crypto transfer application in .apk format.

In Cicada we attack a Domain Controller starting with abusing SMB null authentication.