Step by step walkthrough of the Kobold HTB machine. this writeup covers unauthenticated RCE in MCPJam Inspector and privilege escalation via Docker group abuse.

Step by step walkthrough of the Interpreter HackTheBox machine. Covers exploiting NextGen Healthcare Mirth Connect and privilege escalation.

A complete walkthrough of the Facts machine from HackTheBox Season 10. Learn how to exploit Camaleon CMS, enumerate S3 buckets, and escalate privileges to root.

Exploring how invisible Unicode characters and Bidirectional (BiDi) text overrides can be weaponized for phishing, supplychain attacks, and Trojan Source exploits.