A hands-on walkthrough of a deliberately vulnerable lab showing how small mistakes lead to total compromise.

By the time I opened Splunk, it was already clear that something had gone very wrong on this workstation. The phishing attempt had worked —…

In the name of Allah, the Most Gracious, the Most Merciful.

This is whisper sherlock walkthrough on hackthebox

Usually, when a laptop is stolen, it’s game over. You rely on “Find My Device” (which the thief instantly disables) or file a police report…

A sustainable, ethical proxy strategy emphasizes respecting site boundaries and focusing on legitimate data collection and testing needs.

Common Network Commands

SQL injection is a critical security vulnerability that allows attackers to interfere with the queries an application makes to its…

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

The Game-Changing Combination of SIEM and Conversational AI

In an era where cyber threats are evolving at the speed of AI, the "digital fence" of yesterday is no longer enough. If a traditional firewall is a bouncer checking IDs at the door, a Next-Generation …

ARP spoofing & Man In The Middle Attacks Execution & Detection

Today, I officially passed the PNPT (Practical Network Penetration Tester) certification by TCM Security. I want to share this experience…

This is a very beginner friendly CTF. For non medium subscribsed users please visit…

Room: TryHackMe | Burp Suite: The Basics

Introduction

Finding 0 days in PHP Open Source Code

A quiet lesson from fintech and subnoscription based systems

Why PCI DSS Actually Matters for APIs

First post of a serie about X / Twitter login automatisation. In this episode I’m going to reverse engeener all the required headers