Write-Ups

  • Troubleshooting krbxrelay Unconstrained Delegation – Users

    sup nerds here is a compilation of the problems you might have with krbxrelay and how I fixed them (take them with a grain of salt I’m really not that smart) This is what worked for me when I was doing Unconstrained Delegation – Users in Kerberos Attacks on htb You didn’t put ur junk…

  • Nosql In-Band Data Extraction

    welcome back to the struggle I’m gonna start this one with a bit of an explainer(as far as I understand it,,,, anyway) so your ass better be taking notes & learning You know from the previous section, bypassing authentication, that you have to php encode whatever you’re trying to inject. You know this as param:…

  • Predictable Reset Token

    Alright nerds I’ve seen a lot of people struggling. Even so, don’t just copy what I did, actually attempt it and use this if you get proper stuck. Cheating is cringe Read this token generator and notice that the token is generated by taking the md5 hash of the username concatenated to time in milliseconds.…

  • Active Subdomain Enumeration

    I was very stuck on this section, so maybe this writeup can help to unstuck someone else! No answers tho, sorry! Just my sus explanation that may or may not be accurate lol gl king Questions Submit the FQDN of the nameserver for the “inlanefreight.htb” domain as the answer Ok, Let’s get started by looking…

  • Kali Stickers

    In My Quest To Put Cute Kali Stickers On My Laptop, I found that they really don’t exist in the way that cute graphic design stickers do! Here’s some lettering stickers I made this week to fix this!