This blog would basically give you an insight of building word-list that can be used for password spraying or cracking the captured hashes in your assessment or CTFs. Categories: 1. Constructing Word-list through regular expressions 2. Constructing Word-list from a Website 3. Constructing Word-list for Human-Specific Targets 4. …

Recently, A tweet attracted a lot of interest as it showed how it is possible to list publicly-indexed WhatsApp groups with a little Google Dorking. The dork takes advantage of Groups that has enabled “Invite to Group via Link” feature. A group admin can then generate a shareable public link…

Writeup is a linux based machine. Hints: 1.Vulnerable software can fetch the required thing for you. Software Info is given in the homepage. 2.For privilege escalation think about the groups and file may execute in spite of being on two bin directory. Detail Walkthrough: I started with reconnaissance of the…

These two machines can be solved with same procedures (Insanely Similar) and i would brief you about Granny.This is a windows machine and it’s level is Easy. It’s IP is 10.10.10.15.

Luke is a Linux like (FreeBSD) machine. Hints 1.Directory listing would help at initial stage 2. Try to use the creds indirectly Hope this suffices if you are only looking for hints. As usual I started with the golden rule of scanning ports. …