Peace be upon all of you, on this writeup I am going to cover the solutions of three challenges on Hacekrone related to GraphQL, they have three parts under the name BugDB v1/3. Difficulty: Easy a...

Description Get The highest privilege on the machine and find the flag! Difficulty: Hard Target IP: 3.122.178.169 Target IP: 18.193.129.237 ‌Challenge Link: https://cybertalents.com/challenges...

Description Get The highest privilege on the machine and find the flag! Target IP: 35.156.4.248 Challenge Link: https://cybertalents.com/challenges/machines/shadower User Nmap PORT STATE SE...

Description Flag is hidden somewhere in the directory. Difficulty: Hard Challenge Link: https://cybertalents.com/challenges/web/string-highlighter ‌ Solution Exploring From the name of the cha...

Description Request to the flag is forbidden due to wrong CSRF token … can you fix it and reveal the flag Difficulty: hard Challenge Link: https://cybertalents.com/challenges/web/wrong-token So...

Description this is the most secure way to file upload is it ? Difficulty: Medium Challenge Link: https://cybertalents.com/challenges/web/f2up Solution Exploring When open the challenge you w...

Description Creative Thinking will make getting the flag so much easier Difficulty: Easy Challenge Link: https://cybertalents.com/challenges/web/skiddykill3r Solution Exploring The homepage c...

Description X corp made a new filtration for input data, prove it is secure enough. ‌Difficulty: Easy Challenge Link: https://cybertalents.com/challenges/web/x-corp Solution It an easy challen...

LLMNR Poisoning It stands for Link-Local Multicast Name Resolution. it acts as a host discovery/identification method in windows systems. LLMNR and NBT-NS (NetBios Name System)are used as an alter...

Using PowerView Domain Information PS C:\Users> Get-NetDomain PS C:\Users> Get-NetDomain -Domain m.local PS C:\Users> Get-NetDomainSID PS C:\Users> Get-NetDomainController PS C:\Users...