top of page

Search

BlueDolphin
Jan 16, 2021
Jigsaw Ransomware Analyses
Jigsaw Ransomware Analysis In this blog we are analyzing Jigsaw ransomware through both static and dynamic approaches with the end goal...

BlueDolphin
Jan 13, 2021
HTB LaCasa De Papel
This machine was largely focused around using openssl to custom craft a malicious SSL self signed certificate to gain unauthorized access.


BlueDolphin
Jan 3, 2021
THM, Advent of Cyber2, Web Exploitation - Task 6
This challenge deals with cookie manipulation and encoding.

BlueDolphin
Dec 5, 2020
HTB Friend Zone
This machines forces critical thinking of DNS records and name lookups. With module injection to finish it off.

BlueDolphin
Nov 30, 2020
NA CTF - Forensics/Web & General
Newark Academy CTF (NACTF) is an online jeopardy-style cybersecurity competition hosted by Newark Academy's Computer Science Club. Form...

BlueDolphin
Nov 15, 2020
Hack the Box Frolic
Frolic had few open ports but many paths to exploitations. A ROP is required - be warned.

BlueDolphin
Oct 27, 2020
Hack the Box Nest
We get our foot in the door with open SMB shares and reverse engineer and encryption binary to take it all the way home.

BlueDolphin
Oct 13, 2020
Hack the Box Resolute
Resolute is a difficult but straight forward machine involving LDAP enumeration, and DLL injection.


BlueDolphin
Sep 13, 2020
Identity Access Management With Windows Server
Powerful tools and techniques to employ Identity Access Management with Windows Server Roles/Features

BlueDolphin
Sep 6, 2020
Google CTF 2020 Web Challenge - Pasteurize
This was the first Web Challenge from Google CTF, involving XSS and cookie stealing.

BlueDolphin
Aug 31, 2020
Hack The Box Forward Slash
This was a particularly hard machine that covered subdomain discovery, LFI, scripting, and reverse engineering.

BlueDolphin
Aug 25, 2020
CyBRICS CTF
https://cybrics.net/ CyBRICS is a computer security competition (CTF) organized in a cross-university effort by BRICS countries academia....

BlueDolphin
Aug 20, 2020
Information Disclosure With Port Swigger
In this blog, I am going over the Information Disclosure labs offered by port swigger. Although the exploitation of information...


BlueDolphin
Aug 18, 2020
OWASP Juice Shop Level
OWASP Juice Shop is a intentional insecure web application designed for skill development and training in web application security.

BlueDolphin
Aug 11, 2020
Web Cache Poisoning Unkeyed Header
Web cache poisoning is the process of modifying cached web pages on a server.

BlueDolphin
Aug 10, 2020
Bounty - Hack The Box
Bounty is a straight forward machine. Uploading and utilizing a web shell is the biggest learning point here.

BlueDolphin
Jul 31, 2020
Cascade - Hack The Box
Cascade was an enumeration oriented box, which emphasis on LDAP, SMB, SQLlite, and reversing a .net application.

BlueDolphin
Jul 27, 2020
SQL Injection for CTF's and Bug Bounties
A key part of all CTF's and Bug Bounties has to do with SQL injection.


BlueDolphin
Jul 7, 2020
Threat Hunting with Splunk
Hunting for and responding to threats in a modern environment can be a complex task. Fortunately we, the good guys have Splunk on our side.

BlueDolphin
Jun 10, 2020
Sauna - Hack The Box
Sauna is a fantastic beginner friendly Active Directory box that covers Windows exploitation topics like AS-REP roasting, enumerating for...

BlueDolphin
Apr 25, 2020
Kerberoasting - Abusing and Defending Kerberos
Abusing Kerberos and how to defend against these attacks.


BlueDolphin
Mar 11, 2020
3 Firefox add on's for website enumeration
Mozilla Firefox browser add-ons that can really help when it comes to initial website enumeration. Quite often when participating in...

BlueDolphin
Feb 13, 2020
SANS 2019 Holiday Hack Challenge
Sans 2019 holiday hack challenge also known as KringleCon is an annual info sec conference that covers emerging cyber trends, and offers...


BlueDolphin
Jan 8, 2020
5 ways to avoid burn out in info sec
With the overwhelming amount of data and competitiveness in the info sec world, it is to easy to take on more than you can bite...
bottom of page