B2R Monster Corporate Writeup
A boot-to-root writeup for Monster Corporate, covering SMB enumeration, WordPress admin access, plugin RCE, lateral movement with xxd, and cron-based privilege escalation.
A boot-to-root writeup for Monster Corporate, covering SMB enumeration, WordPress admin access, plugin RCE, lateral movement with xxd, and cron-based privilege escalation.
Notes from building and attacking an Active Directory lab, focused on domain enumeration, trust paths, and escalation patterns.
A disciplined web testing workflow for mapping application behavior, finding logic flaws, and proving impact cleanly.
How my first rooted CTF target taught me to slow down, enumerate carefully, and turn small signals into a full attack path.