Keysight Technologies Romania’s Post

"Education is the passport to the future, for tomorrow belongs to those who prepare for it today." – Malcolm X Despite currently being a free agent, maintaining and building my knowledge and skills is of utmost importance to me. I am pleased to announce my completion of the Web Fundamentals Learning Path on TryHackMe! I have cemented my understanding of common web application vulnerabilities, the OWASP Top Ten as well as doubled down on my proficiency with conducting vulnerability discovery using Burp Suite! I have also been practicing writeups and have just published my walkthrough of the Pickle Rick CTF on my Medium! https://lnkd.in/exweCdgK Stay tuned for more to come!

For those who don’t know, Knowledge Management Systems for Offensive Security Professionals is out and we are building it in public. The aim of this course is to teach professionals and students modern note taking methodologies and strategies leveraging Obsidian. This course is completely free and open source, you can check it out on Hacker Hermanos GitHub. The next section, which is dropping very soon, will be on keeping a backup of your notes using GitHub. Check KM4OSP out: https://lnkd.in/d_-YQvmP

So many points of exploitation to consider when performing a penetration test. Great CTF to practice and learn. I highly recommend going for the all the flags that you can find on the secret scoreboard page...

[FREE ACCESS ARTICLE] Pentest: Scapy Cheat Sheet by SANS Institute https://lnkd.in/guKixqae #infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #coding #opensource

Four tips to keep your GitHub Actions workflows secure: Researchers from Purdue and NCSU have found a large number of command injection vulnerabilities in the workflows of projects on GitHub. Follow these four tips to keep your GitHub Actions workflows secure. https://lnkd.in/eUi8AszR

Learning about the power of Burp Suite and how to utilize it to find and exploit web vulnerabilities

[FREE ACCESS ARTICLE]Pentest: Scapy Cheat Sheet by SANS Institute https://lnkd.in/guKixqae #infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #coding #opensource

This room provided a solid hands-on intro to web application security testing. Learned a bunch about buffer overflows and exploiting vulnerabilities. Feeling more confident in my ability to identify security weaknesses now. #TryHackMe #Fowsniff #WebSecurity #InformationSecurity

Bettering my web knowledge is a critical focus of mine currently. I was given advice to go practice the Web Security Academy from Portswigger. So I am doing just that with the help of TCM Practical Web Hacking course by Alex Olsen Here is the first write up for a simple exploitation of broken authentication. #WebApp #OWASP #Burp #Portswigger #TCM #OSCP

Arctic: Coldfusion and Privilege Escalation via Kernel Exploit! Check out my detailed and beginner-friendly writeup of the easy HTB box Arctic! At every step, I explain what I'm doing and why so that the reader would be more informed and be able to replicate the steps if needed. Learn how to use a Coldfusion exploit to gain initial access and how to use a common kernel exploit to gain administrator privileges! Also, read to the end to see the business repercussions of such vulnerabilities! #oscp #writeup #blog #HTB #hackthebox #juniorpenetrationtester #penetrationtester #pentester https://lnkd.in/gm_BmQ6Z