Posts
Hoang Nguyen
Cancel

Bypassing Cloudflare WAF and IP restriction (kind of)

Cloudflare is a popular choice for both individuals and corporates due to it’s capability to protect your website from various kinds of network and application attacks. Methods of bypassing Cloudf...

HackTheBox JSON Writeup

Machine Info This is a retired machine on HackTheBox. Machine IP: 10.10.10.158 My machine IP: 10.10.14.19 Enumeration Using nmap, it is possible to determine that the machine is running Window...

HackTheBox Celestial Writeup

Machine Info This is a retired machine on HackTheBox. Machine IP: 10.10.10.85 My machine IP: 10.10.14.19 Enumeration The machine only have port 3000 open. This port runs a HTTP Server with Nod...

HackTheBox Obscurity Writeup

Machine Info This is a retired machine on HackTheBox. Machine IP: 10.10.10.168 My machine IP: 10.10.14.19 Enumeration The machine just have a OpenSSH server as well as a HTTP Server. Go to the...

OWASP Android Uncrackable Level 3 Writeup

Information UnCrackable App for Android Level 3 This app holds a secret inside. Can you find it? Objective: A secret string is hidden somewhere in this app. Find a way to extract it. Author...

OWASP Android Uncrackable Level 2 Writeup

Information UnCrackable App for Android Level 2 This app holds a secret inside. Can you find it? Objective: A secret string is hidden somewhere in this app. Find a way to extract it. Author...

OWASP Android Uncrackable Level 1 Writeup

Information Recently I have taken a liking to mobile devices pentesting, so I’m doing this series as a primer for my later series. UnCrackable App for Android Level 1 This app holds a secret insi...

Vulnhub Secure Code 1 Writeup

Machine Information As you have read from my other posts on this blog, I recently got the OSCP certification, and now that I’ve set my eyes on the next cert - OSWE, I’m practicing code review. This...

My OSCP Journey

A little bit about me Hey guys, I have just taken the OSCP exam, and as many others, I would like to share my experience. The PWK course and the OSCP exam is why I have no posts on this blog for ...

C0m80 Boot2Root CTF Writeup

Machine Info This is a challenge from ȜӍŖGͶϾȜ. Check it out. Machine IP: 10.0.2.21 Attacking IP: 10.0.2.14 Enumeration & Reconnaisance Right from the start, nmap returned alot of data: ...