
Mastering Kerberos: Capturing Active Directory on a HackTheBox Virtual Machine
Date: 22/07/2025

Date: 22/07/2025
Date: 13/06/2025
Date: 04/04/2023
Date: 26/03/2023
Date: 03/06/2022
Date: 19/10/2020
Today, I will show how to conquer the stratosphere – i.e. gain root access on the Stratosphere VM available on Hack The Box CTF grounds. To capture the root flag, I will have to overcome the Apache Struts framework to get an RCE vulnerability in a web app, put to practice the rarely used (but still very useful) Forward Shell remote session concept, highjack a library, and find a way to exploit the eval()
function in a treacherous Python script.
Date: 19/10/2020
The buffer overflow vulnerability is an extremely popular topic on hackers’ forums. In this article, I will provide a universal and practically-oriented ‘introduction’ for enthusiasts studying the basics of low-level exploitation. Using stack overflow as an example, I will address a broad range of topics: from security mechanisms currently used by the GCC compiler to specific features of binary stack overflow exploits.