HiveNightmare (CVE-2021-36934)
Summary HiveNightmare AKA SeriousSAM AKA CVE-2021-36934 is a Microsoft Windows vulnerability which affects Windows 10 and 11 starting with Windows 10 version 1809. This vulnerability allows for an attacker that has local access to any low level (non-administrator) account to perform a privilege escalation attack in order to elevate their privileges or harvest credentials and…
LFI to RCE
I’ve been reading up on this as I prepare for my OSCP certification – there is no shortage of different attack vectors and chaining of exploits when it comes to getting ready. One of these is Local File Inclusion (LFI). Please note that this can apply to different platforms but for this blog post, we…
SQL Authentication Bypass
No credentials? No problem! …well, maybe. If a web application is vulnerable to SQL injection (SQLi), you may be able to bypass authentication. A typical SQL query is like the following: SELECT * FROM table WHERE username = ‘bob’ AND password = ‘Str0ngP@ssw0rd!’; Usually you can start to test for the existence of this vulnerability…
Enumeration is cyclical
Many say it – methodology is important–if not critical! In this post I’ll quickly cover the hacking phases but what’s more paramount to success is being cyclical in your process. What the typical hacking methodology looks like: ReconEnumeration and ScanningExploitation (Foothold then Privilege Escalation)PersistenceCovering TracksLateral Movement This is a great way to map out the…
Easy Credentials
This is going to be one of those posts that some may scratch their head at and say, “why is he bothering to write this?” And this will not be the last of these types of posts – I promise you that. The fact of the matter is that people getting into hacking (ethical I…
Short-term goals… OSCP
Like many before me and, I’m sure, many after me – I am in pursuit of the gold standard entry-level pentester certification–the Offensive Security Certified Professional (OSCP). I label this post as “short-term” as I have been studying on and off for awhile but this is something I want for myself by EOY 2021. This…
Follow My Blog
Get new content delivered directly to your inbox.
If you like my content and feel it adds value, please consider contributing:
$BTC: bc1q0723kp60wty86ycmf3tcr32luulpc44saulxq2
$XRP: r3Xrc9XmL2azspKqLAzma1hEAV67oxzsmn
$VET: 0x0723E77879D57Fcbf1A70a51578C334F7b3d9f77
Team-53 InfoSec Blog 