This web application is vulnerable to CVE-2024-4367, a result of containing a vulnerable version of the PDF.js library. https://codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in...

Background In recent times, Google Ads has become a prime target for phishing attacks. Threat actors are leveraging the platform’s credibility to deceive users and gain unauthorized access to sensi...

Introduction This phishing campaign has been by far one of the more reactive ones I’ve personally run into. I even managed a few words out of the admin before he grew bored of me : ( There is a lo...

Update 7/25 We now get the following when visiting all domains mentioned: <html><body><h1>503 Service Unavailable</h1> No server is available to handle this request. </...

Work Experience Elite Technical Support Engineer (III) @ Tenable July 2025 - Present Lead vulnerability management efforts for strategic enterprise environments, supporting complex Tenable deplo...

Initial Enumeration Let’s start with our standard nmap scan sudo nmap -sC -sV -vv --top-ports=5000 $TARGETIP -oN nmapout Open Ports nmapout:53/tcp open domain syn-ack ttl 127 Simple DNS...

Initial Enumeration We start off with a standard nmap scan sudo nmap -sC -sV -vv --top-ports=5000 $TARGETIP -oN nmapout Open Ports 53/tcp open domain syn-ack ttl 127 Simple DNS Plus 80/...

Initial Enumeration We start off with our standard nmap scan: sudo nmap -sC -sV -vv --top-ports=5000 $TARGETIP Open Ports 53/tcp open domain syn-ack ttl 127 Simple DNS Plus 80/tcp ope...

This challenge is setup as an Assumed Breach scenario, so we are provided starting credentials: As is common in real life Windows pentests, you will start this box with credentials for the followin...

Initial Enumeration We start off with a standard nmap scan sudo nmap -sC -sV -vv --top-ports=5000 $TARGETIP PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack...