Bell Home Hub 3000 Vulnerabilites CVE’s XSS: CVE-2020-11448 Serial Number Leak: CVE-2020-11447 Foreword This is some research I performed in 2020, and attempted to disclose to them during that...

Overview Kubernetes is great, however with the default K3S setup, it exposes traefik as a nodeport, which is not optimal for High Availibility / Redunancy. As well, the service external IP’s are n...

RClone as CSI on K3S Introduction RClone is a funny tool for jankily using Cloud Storage as a storage volume in mysterious and wacky ways. Ever wanted to use Google Drive as PVC and hate yourse...

Code Execution within Source Engine Game CVE: CVE-2020-12242 Affected Products Tested: CS:GO BuildID: 4937372 -> Current TF2 BuildID: 4871679 -> Current Garry’s Mod BuildID: 4803834 ...

My OSCP Course/Exam Review, A 14/15 year old’s perspective. Introduction   The reputation you are immediately introduced to when you mention the words ‘OSCP’ is the challenging, “Try Harder” na...

CVE-2020-8510 phpABook 0.9 intermediate Auth Bypass Within the phpABook(v0.9i) software, upon authentication a cookie with the name “userInfo” is set in your browser with the format of user+perms...

My First OSCP Exam Attempt ​ This past week I had my first OSCP exam attempt, TL;DR I failed. This post is going to dive into what I’ve learned from this experience that I think others can benef...

Arch Linux on Apple Machines With The T2 Introduction The goal of this will be to show you how to bypass the T2 chip on the new apple machines that blocks you from installing Arch linux, now you ...

Gobuster - 3.0.1 Brief Description With the new Gobuster 3 update alot of things have changed i.e the command structure the way you use the cli etc and this blog post aims to help explains that...

Blue Writeup Description / TL;DR This box is one of the easiest boxes on HTB with a 2 minute root, to root this box you have to use Etneral Blue(MS17-010) and you get a root shell IP: 10.10.10.5...