Hey fella!!!! I have been recently learning about Android Application Penetration Testing and to put my learning into action, I started looking out for some Vulnerable apps and CTF challenges. That is when I found this awesome GitHub repo with numerous resources and one among them was the AllSafe Vulnerable Android Application. GitHub - t0thkr1s/allsafe: Intentionally vulnerable Android application. Allsafe is an intentionally vulnerable application that contains various vulnerabilities. Unlike other vulnerable…github.com

Hola Amigo!! Today, I got my first Bug at Hackerone which is really interesting for me, and hope it will be the same for you too! I observed and exploited this Bug in an engagement (Web app Penetration Testing) at my workplace and thought of looking for it in an…

Payback PWN Challenge Hey there! I know it’s been a long since I wrote any blogs but I am now back with a bang! I always love pwn challenges in CTF though I am not that good at it. But still, I try to learn them and practice them a lot so as…

Hey buddy! Hope you are doing good! Recently I took the PNPT certification and have cleared it. So, I am here to share my experience taking the exam and the resources which helped me a lot. PNPT is one of a kind close to real-world certification which mainly focus on…

Day-4 Hello there! In this blog, you will learn different ways to get a reverse shell from a vulnerable machine in an internal network by pivoting through an external compromised machine. This challenge is also part of the wreath network from Tryhackme which you could check for further study. How to get a reverse shell from an internal network? First…

Day 3 Today it’s about some Active-Directory attacks. Getting the initial foothold by LLMNR poisoning Token impersonation LLMNR poisoning: LLMNR (Link-Local Multicast Name Resolution) is a protocol similar to DNS used for local domain name resolution. …

Day-2 Bonjour Ami/Amie !! In this blog, I will be discussing a few pivoting techniques which are Pivoting using SSH Pivoting using Metasploit What is pivoting? Pivoting is the art of using access obtained over one machine to exploit another machine deeper in the network. …

Day-1 Hola amigo!! It’s been a long since we met! Hope you are doing good! From now on to get back on track I will be writing something new every day related to offensive security. Also, I am about to take PNPT certification soon so you could even see some…

Hello there!!! In this blog I will be talking on the “Topic of the Moment” among IT and DEV folks which is Docker. This blog will be like a Q&A where a curious user(ME) asks questions regarding the docker and gets answers from a person who is an expert.(My …