Traitor — an automated linux privesc tool created by LiamG

I was trying to install and test this great tool named Traitor. This is a tool that automatically exploits low-hanging fruit to pop a root shell. Essentially, linux privilege escalation made easy. Traitor packages up a bunch of methods to exploit local misconfigurations and vulnerabilities in order to pop a…

HackTheBox: CMSpit Room Walkthough HackTheBox: CMSpit Room Walkthough I have a pending application for a company in New Zealand. One of their screening processes is a CTF in HTB. I was having a hard time capturing the flag. …

How to clear cache for website in AWS s3 + Cloudfront + Route53 + Certificate Manager I have my own personal site which is a static website hosted in AWS S3 with Route53 for my DNS + Cloudfront as my CDN (content delivery network) cache. Issue is that when I…

A bit of local politics-related post…and probably a wake up call for me. With the presidential election already concluded, I am now highly considering working outside my home country. For me to apply and work abroad confidently, I guess I would need to be more serious in studying, upgrading my…

Name: NMAP/Further Nmap Difficulty: Easy Description: Introduction to NMAP tool Though I have been using NMAP at work for the past years, I approached this “room” with my “hunger for knowledge” self face on. I cannot thank you so much :D I devoured this room as if I do not…

So I recently took the CCSK (Certified Cloud Security Knowledge) of Cloud Security Alliance. This certification is an open-book, web-based (non-proctored) certification exam that tests the candidates knowledge of cloud security. While this may be an open-book exam, it was indeed a hard one to crack. My exam was company-sponsored…