CyberNexusBlog

Tag

#hacking

Cover Image for Red Team Engagement: WELCOME.local

Red Team Engagement: WELCOME.local

Objective: From an initial foothold, escalate privileges to Domain Admin and demonstrate full domain compromise. 1. Initial Reconnaissance O…

Cover Image for L'Attaque Shai-Hulud : Analyse Technique d'un Ver Auto-Réplicant Ciblant l'Écosystème npm

L'Attaque Shai-Hulud : Analyse Technique d'un Ver Auto-Réplicant Ciblant l'Écosystème npm

L'écosystème npm, pierre angulaire du développement JavaScript moderne, a récemment fait l'objet d'une attaque sophistiquée d'une ampleur sa…

Cover Image for Server-Side Template Injection (SSTI) : De la Détection à l'Exécution de Code

Server-Side Template Injection (SSTI) : De la Détection à l'Exécution de Code

Les Server-Side Template Injection (SSTI) représentent une classe de vulnérabilités particulièrement dangereuses qui permettent aux attaquan…

Cover Image for Attaques Avancées sur Active Directory : Guide Technique Complet 2025

Attaques Avancées sur Active Directory : Guide Technique Complet 2025

Kerberoasting, ASREPRoasting, Golden/Silver Tickets, DCSync et Techniques de Persistance Les environnements Active Directory (AD) représente…

Cover Image for Techniques de Living-off-the-Land avec PowerShell et WMI : L'Art de l'Exploitation Furtive

Techniques de Living-off-the-Land avec PowerShell et WMI : L'Art de l'Exploitation Furtive

Les techniques de Living-off-the-Land (LotL) représentent aujourd'hui l'une des méthodes d'attaque les plus sophistiquées et insidieuses dan…

Cover Image for Eureka HTB - Complete Walkthrough: Exploiting Spring Cloud Eureka Service Registry

Eureka HTB - Complete Walkthrough: Exploiting Spring Cloud Eureka Service Registry

Introduction Eureka is a fascinating HackTheBox machine that demonstrates real-world vulnerabilities in Spring Cloud microservices architect…

Cover Image for Era HTB Machine Writeup - Complete Exploitation Guide

Era HTB Machine Writeup - Complete Exploitation Guide

Overview Era is a Linux machine from Hack The Box that demonstrates several interesting attack vectors including IDOR vulnerabilities, privi…

Cover Image for Outbound HTB Machine - Complete Walkthrough

Outbound HTB Machine - Complete Walkthrough

This is a detailed walkthrough of the "Outbound" machine from Hack The Box, demonstrating the complete exploitation chain from initial recon…

Cover Image for Cap HTB Walkthrough - Exploiting IDOR and PwnKit

Cap HTB Walkthrough - Exploiting IDOR and PwnKit

Introduction Cap is an easy-difficulty Linux machine from HackTheBox that demonstrates the importance of proper access controls and keeping …

Cover Image for SimpleCTF TryHackMe Walkthrough

SimpleCTF TryHackMe Walkthrough

Overview SimpleCTF is a beginner-friendly CTF challenge on TryHackMe that focuses on basic enumeration, exploitation of a CMS vulnerability,…

Cover Image for TryHackMe SilverPlatter CTF Writeup

TryHackMe SilverPlatter CTF Writeup

Executive Summary SilverPlatter is an easy-difficulty CTF machine from TryHackMe that demonstrates common web application vulnerabilities an…

Cover Image for Steps to Integrate Wazuh, TheHive, and Shuffle in a SOC Automation Lab

Steps to Integrate Wazuh, TheHive, and Shuffle in a SOC Automation Lab

Introduction In this post, I'll walk you through building a comprehensive Security Operations Center (SOC) automation lab that integrates Wa…