https://hngnh.com/ Hoang Nguyen's personal blog. Infosec and stuff. 2025-11-24T15:23:39+07:00 Hoang Nguyen https://hngnh.com/ Jekyll © 2025 Hoang Nguyen /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2025-11-17T00:00:00+07:00 2025-11-17T00:00:00+07:00 https://hngnh.com/posts/Sliver-CVE-2025-27093/ catmandx

Summary Sliver is a powerful command and control (C2) framework designed to provide advanced capabilities for covertly managing and controlling remote systems. Sliver supports Wireguard as a transport protocol with a custom Wireguard netstack. It is popular due to the open-source nature as well as extensibility, ease-of-use, and compatibility with Cobalt Strike BOFs. In versions 1.5.43 and ear...

2022-08-03T00:00:00+07:00 2022-08-03T00:00:00+07:00 https://hngnh.com/posts/Bypass-Cloudflare-WAF-kinda/ catmandx

Cloudflare is a popular choice for both individuals and corporates due to it’s capability to protect your website from various kinds of network and application attacks. Methods of bypassing Cloudflare WAF Essentially there are 2 ways of bypassing the WAF provided by Cloudflare: Customize the payload to previously unknown formats Getting the origin IP of the application. I won’t discuss ...

2021-12-13T00:00:00+07:00 2021-12-13T00:00:00+07:00 https://hngnh.com/posts/HTB-JSON-Writeup/ catmandx

Machine Info This is a retired machine on HackTheBox. Machine IP: 10.10.10.158 My machine IP: 10.10.14.19 Enumeration Using nmap, it is possible to determine that the machine is running Windows Server 2012 and has port 21 and 80 open. Unsafe deserialization of client-controlled data When we go to http://10.10.10.158:80/, we see a Login page after briefly seeing the dashboard, a sign of un...

2021-12-10T00:00:00+07:00 2021-12-10T00:00:00+07:00 https://hngnh.com/posts/HTB-Celestial-Writeup/ catmandx

Machine Info This is a retired machine on HackTheBox. Machine IP: 10.10.10.85 My machine IP: 10.10.14.19 Enumeration The machine only have port 3000 open. This port runs a HTTP Server with Nodejs and Express. We are then given a cookie with the value: eyJ1c2VybmFtZSI6IkR1bW15IiwiY291bnRyeSI6IklkayBQcm9iYWJseSBTb21ld2hlcmUgRHVtYiIsImNpdHkiOiJMYW1ldG93biIsIm51bSI6IjIifQ== Which translates...

2021-12-09T00:00:00+07:00 2021-12-09T00:00:00+07:00 https://hngnh.com/posts/HTB-Obscurity-Writeup/ catmandx

Machine Info This is a retired machine on HackTheBox. Machine IP: 10.10.10.168 My machine IP: 10.10.14.19 Enumeration The machine just have a OpenSSH server as well as a HTTP Server. Go to the web server and we’re greeted with this landing page: With the list of softwares the developer has developed: And this gem: Message to server devs: the current source code for the web server...