Blunder is a Linux based CTF from HackTheBox. It entails hacking into a vulnerable web server. The server is hosting a CMS called Bludit. Which we need to exploit, after finding some potential users. Once we gain a foothold in the machine, we get a reverse shell, privesc to the user and finally privesc to …

Blunder Read More »

Agent Sudo

Agent Sudo is a TryHackMe CTF. It involves some manual enumeration, FTP brute-forcing with Hydra, SSH, then privilege escalate with a sudo CVE vulnerability.


Bolt is a TryHackMe CTF. It has a focus on the Bolt CMS. We will be exploiting a remote code execution vulnerability.