top of page
Search
I Built a Robot to Argue With Other Robots (And It's Going Great)
I've spent the last several weeks personally testing AI model safeguards and becoming familiar with the nuance required when you're...
AtomicChonk
Aug 246 min read
Tokenizing the Sandwich Debate: How NLP Models Weigh In on Hot Dogs
Get the gist for Natural Language Processing (NLP) and how tokenization plays a factor
AtomicChonk
Apr 76 min read
Running Laps on LAPS feat. HTB Timelapse
Winning the race on DACL abuse and LAPS through a HTB Timelapse walkthrough
Winifred
Jan 168 min read
HTB Academy: "Footprinting Lab - Hard" Walkthrough
Walkthrough for HTB Academy's Footprinting Lab (Hard Difficulty)
Winifred
Aug 18, 20242 min read
The Role of Social Media in Social Engineering: Facebook Edition
How your Facebook profile is making it easier for ne'er-do-wells to ruin your day
Winifred
Jun 13, 20245 min read
Data Democracy: Is Your Voter Registration Data Safe?
During the peak of primary election season, most active voters are more concerned with the candidates and their stances on key divisive...
z3r0day_504
Mar 4, 20245 min read
Using Generative AI in Social Engineering and Disinformation
How generative AI can expedite and strengthen social engineering efforts in cyber and disinformation campaigns
z3r0day_504
Oct 13, 20235 min read
Email Spoofing When DMARC != Properly Configured
Email spoofing testing and how-to for when DMARC policies are improperly configured
z3r0day_504
Sep 25, 20233 min read
Exploiting MS08-067 without Metasploit (HTB Legacy Walkthrough)
Enumeration First we run a generic nmap scan against the box to see what ports and services are available: We see that SMB is open, let's...
z3r0day_504
Sep 4, 20231 min read
Exploiting MS17-010 without Metasploit (HTB Blue Walkthrough)
Enumeration First we run an nmap scan against the target: Here we can see that port 445 (SMB) is open. We also see the computer name as...
z3r0day_504
Aug 28, 20233 min read
Exploiting CVE-2023-32784 (KeePass)
Overview Vulnerability in a Nutshell PoC Demo/Walkthrough Troubleshooting and Reliability Alternate Attack Paths for KeePass Overview...
z3r0day_504
Aug 22, 20233 min read
DC31 Recon Village CTF Writeup
Overview This weekend we competed in Defcon 31's Recon Village CTF. As team "AtomicChonk" we came in second place and wanted to share...
z3r0day_504
Aug 13, 20233 min read
CRTO Course and Exam Review
Overview Certified Red Team Operator (CRTO) is a certification opportunity presented by ZeroPointSecurity. The certification ties...
z3r0day_504
Aug 4, 20233 min read
From Boots to Bugs: A Career Transition Tackling Cyber Frontlines and How You Can Make It There
I recently decided to pen this blog post because, upon looking back, I realize that my career path so far has been conventional in some...
z3r0day_504
Jun 19, 20238 min read
OffSec Proving Grounds Practice Walkthrough: Helpdesk
Helpdesk is an easy level of difficulty that focuses on a directory traversal vulnerability in the software the endpoint is hosting....
z3r0day_504
May 29, 20231 min read
Threat Groups Series: Dark Caracal
Dark Caracal emerged in the early 2010s and is believed by several sources to be related to the Lebanese General Directorate of General...
z3r0day_504
Apr 25, 20231 min read
Threat Groups Series: APT 41
To kick off my threat groups series, I've decided to start with APT 41, highly suspected to be based out of China. Source of a large...
z3r0day_504
Apr 4, 20232 min read
Basic Static Analysis of Raccoon Stealer
In today's blog post I'll be conducting some basic static analysis on Raccoon Stealer. Raccoon Stealer has been around for several years...
z3r0day_504
Mar 14, 20232 min read
HTB Walkthrough: Chatterbox
Enumeration Running an nmap scan shows which ports are open and available: We see that there are ports running unknown services. Google...
z3r0day_504
Mar 6, 20232 min read
HTB Walkthrough: Devel
Enumeration Start with an nmap scan: From there we can discern that ports 21 and 80 are open. Gaining Access Check port 21 (FTP) for...
z3r0day_504
Feb 20, 20232 min read
Home: Subscribe
bottom of page