A Hack The Box Principal write-up covering web discovery, token abuse, credential reuse, and privilege escalation to root.

A TryHackMe Active Directory write-up covering LDAP enumeration, Kerberoasting, SMB abuse, and domain compromise.

A TryHackMe write-up covering HopAI web enumeration, DNS zone transfer abuse, mail workflow abuse, and model prompt extraction.

A detailed walkthrough of the CTF challenge, covering reconnaissance, enumeration, exploitation, and privilege escalation.

A TryHackMe Hoppers Origins write-up covering chatbot command injection, internal service enumeration, and multi-host privilege escalation across the lab.

A TryHackMe Side Quest 2 write-up covering enumeration, GDB-assisted key recovery, payload storage abuse, and hidden service discovery to gain foothold access.

medium-rated

Learning Active Directory reconnaissance on a Windows DC (TryHackMe-style)

A Hack The Box Artificial write-up covering web enumeration, database extraction, hash cracking, lateral movement, and privilege escalation.

A TryHackMe Active Directory enumeration write-up covering lab connectivity, credentialed access, and PowerShell-based domain recon.