TryHackMe

Master the Pickle Rick CTF with this guide on web enumeration and filter evasion. We cover reconnaissance using Nmap and Gobuster, techniques for bypassing command injection blacklists, and exploiting misconfigured sudo permissions to escalate privileges and root the box.

We explore open web services for initial access, leverage blind SQL injection to extract credentials for lateral movement, and exploit PYTHONPATH environment manipulation via sudo-enabled scripts for privilege escalation.

We explore unconventional SSL services for initial access, manipulate digital certificates for lateral movement, and exploit sudo configurations for privilege escalation.

Exploit Publisher on TryHackMe: A guide to PHP CMS vulnerabilities, lateral movement, and bypassing AppArmor via SUID binaries for full root access.

Master the Lookup THM machine: A practical guide to web exploitation, reconnaissance, and Linux privilege escalation for the Penetration Tester 1 path.