Posts RSS feed
2025
-
Step-by-step HTB Soulmate walkthrough, web recon, CrushFTP auth bypass (CVE-2025-31161), file upload reverse shell, and Erlang-based root escalation.
-
A Python terminal-based simulator for N communicating finite state machines (CFSMs), featuring step-by-step and automatic execution modes, FIFO channel communication, and error detection for deadlocks and unspecified receptions.
2024
-
Monitor two (easy) HTB walkthrough: Cacti RCE (CVE-2022-46169) for web RCE, container MySQL credential discovery, cracking user creds (marcus → funkymonkey), host container mount discovery and SUID/capsh privilege escalation to root.
-
Step-by-step HTB Administrator walkthrough: SMB foothold with Olivia, BloodHound AD enumeration, PWSafe credential recovery, targeted Kerberoast, secretsdump extraction and Pass-the-Hash Administrator takeover.
-
A .NET ASP.NET MVC website showcasing traditional dishes from France, Algeria, and Armenia. Features recipes, videos, and an interactive map to explore how food reflects culture.
-
A step-by-step guide to turning your Arduino Mega or Uno into a HID keyboard using FLIP and custom HEX firmware.
-
A Python game where players compete to design the best rental house, inspired by TV shows like Pimp My Ride. Features a custom Arduino Mega buzzer system for interactive gameplay.
2023
-
An internal web application developed during my internship to manage and update a SQL data table, featuring a responsive and user-friendly interface built with ASP.NET MVC, C#, and frontend technologies.