Lazy Enlil

Sometimes during pentests we can find pretty similar "environment(s)". By environment - this time - I mean open ports, possible (mis)configuration bugs or default passwords still used for access the target box/app. That's why I decided to start 'something new'...

Few more quick tests

Last time I described small script you can use (or create) during your pentests. Below you will find a little continuation of the paths started last time. So...

Enlil.py - example module

Hi :) last time we talked about wooper.py and enlil.py projects I started some time ago. Since last few weeks I was wondering "what if" we'll combine results from both "proof-of-concepts". Below you'll find few notes about it. Here we go...

Enlil - Unfinished Sympathy

Hi :) This time I decided to check one of my old codes (called enlil). Few details you'll find below. Here we go...

Pentesting Jenkins

Some time ago I started a small project called 'enlil'. As you already know - I'm using it during pentests and redteam projects. Below you'll find few notes about the test prepared for Jenkins. Here we go...

Enlil: Introduction

Hi. Some time ago I create a small script called 'enlil'. Few days ago I decided to check it again and rewrite few things. Below you will find a draft of the current status. ;) Here we go...

Postauth Traps in NagiosXI 5.8.x

Few days ago (when I was working on new version of 'enlil' scanner) I started my mini-internal-pentest related to VM (v5.8.6 afaik) with preinstalled NagiosXI. Below you'll find new notes about it. Here we go...

Escalate_Linux:1 CTF

This time I decided to check one the latest VM available at VulnHub called Escalate_Linux:1 (by Manish Gupta). Let's go...

Enlil: Continuous Development

Hi :) last time we talked about Enlil project I decided to rewrite. Today we'll go deeper and modify our current script to extend the "automation of pentest". ;) Here we go...

Hacker Fest 2019 CTF

Few days ago I decided to try some new CTF(s) available at VulnHub. This time I player "Hacker Fest 2019" prepared by Martin Haller. Below you will find the details. Here we go...

Wakanda CTF

This time I tried Wakanda CTF prepared by xMagass. Here we go...

Enter in 2022

It was an interesting beginning of the year. After a few talks with few friends during last year, last few weeks I spent creating a new small tool called EnterTerminal. More details about it you'll find below. Here we go... 

Responding to Windows 10

I decided to prepare a small Windows-based VM to check few cases related to 'workstation security'. Below you will find the details about Windows 10 I used against Kali Linux. Here we go...

Few cracking notes

After a while I decided to go back to resources from crackmes.de (mirror I found here).
As usual, my main goal was to (more) understand ASM and (finally) print the 'congratulation' message. Let's try to do it... :)

Bulldog2 CTF

This time I decided to check Bulldog:2 CTF from VulnHub prepared by Nick Frichette. Below you will find the details. Here we go...

CrackMe for Beginners

I decided to create a „CrackMe for Beginners” paper to prepare some basic ideas and hints for new reversers. After a while there were a few 'papers' related to the subcjet so I decided to publish it on the blog. Below you will find the details. Here we go...