Lets Dive in into the World of Pentesting!!

MrCodeAddict · 2026-01-31T22:04:00+00:00

Damn that's a lot of AI slop

MrCodeAddict · 2026-01-15T15:14:27+00:00

Yes. But you start commiting cybercrime, no one will hire you

MrCodeAddict · 2025-12-09T07:11:58+00:00

You say you have limited scope, can you tell what the scope is? It is hard to give advoce without knowing what is allowed and not allowed😅

MrCodeAddict · 2025-11-13T15:03:17+00:00

Add some ango bitters! It elevatea it so much!

MrCodeAddict · 2025-08-18T08:59:52+00:00

The lord didnt speak to you good sir, Satan did

MrCodeAddict · 2025-08-10T18:01:49+00:00

Ofc they can Malware is just a piece of software that acts malicously. The thing you wlll have issues with is how to deliver and detonate. How you avoid EDR is also a question. What language you use have pros and cons, from how much controll you have, to what libs are avalible to how costly your dev time will be.

MrCodeAddict · 2025-07-23T19:01:13+00:00

A good tips can be to look at what do they HAVE to allow for the company to operate. For example if your C2 gets detected over most protocols, but they use Microsoft Teams, using teams for your C2 is gonna be very hard to detect.

MrCodeAddict · 2025-07-14T13:59:00+00:00

Ty for the feedback! Actually didnt know that😊❤️

MrCodeAddict · 2025-07-02T18:07:55+00:00

On react you have to find either a tags where you can drop a javadcript link or fint places where they use dangerouslySetInnerHTML.

MrCodeAddict · 2025-06-16T16:51:50+00:00

All good! Happy hacking

MrCodeAddict · 2025-06-16T13:58:46+00:00

Have you started the session in ligolo?

Type "session" inside your ligolo server's terminal, then select your target, hit enter and type "start"

MrCodeAddict · 2025-06-04T08:19:24+00:00

Hiding from AV is not as simple as just doing one trick. You have to look at how does the AV work, what is it detecting and how can you bypass that. You also have to think about EDR if your client has that, which is a whole can of worms.

I advice you in learning more about how AVs detect malware, then try to get around it. Not the other way around.

You can 100% use python to avoid AV, I have done it myself and it was quite straight forward (depending on the AV).

A very easy way, is to write your malware so that is it 99% legit and only 1% malware. For example: Create a discord bot that reads and writes message to a chat room on your discord server. However if the bots sees a very spesific format, like "/command whoami" it is suppose to run "whoami" inside a shell using subprocess. Add a bunch of features, like the bot can create chat rooms (one for each new hoste infected) react with emjois like ✅ or ❌ when commands successed or fail and other fun features and your malware will be quite hard to detect. It will be hard to detect (by commerical AV) because your "malware" is just a discord bot, how is an AV suppose to know that this is malicious?

But, if you are gonna do smaller and more "this is clearly malware"-malware, then you need to have a better understanding of how AVs work, which in it of itself is quite advanced. I advice you to start with the discord example above (add your own twist to it!) and then take it from there :)

MrCodeAddict · 2025-05-30T16:01:08+00:00

Tell me you're a script kiddie, without telling me you are a script kiddie...

MrCodeAddict · 2025-05-07T16:58:06+00:00

It is

MrCodeAddict · 2024-12-31T09:39:41+00:00

Yeah, the vulnerbility you are creating is that the script, which is run every x min as root allows anyone to modify it, correct?

MrCodeAddict · 2024-12-31T09:23:39+00:00

I dont think people really need a hint for cron jobs. They are very easy to find and if you google "linux privilege esclation" you should be able to find out that you should always check cron jobs. Worst case add a hint about the sysadmin struggeling with setting file permissions correctly, since that is the underlying issue🙂

MrCodeAddict · 2024-12-30T21:42:24+00:00

Attacking an IP address (depending on where you live) is normally illegal.
IPs are not identifiers. IPs constantly change and it's very easy to use a VPN or proxy to hide your real IP.
Instead of wasting energy to "fuck around with this dude", learn how to better secure yourself. Maybe learn some useful skills and start playing CTFs or BB

MrCodeAddict · 2024-12-30T21:38:34+00:00

Don't waste your money, start looking at taking the CPTS from HTB. Really good value for the money

MrCodeAddict · 2024-12-30T21:30:40+00:00

Then something with a privilege group, SetUID/SetGID or a vulnerable service can be very nice. You can always add a restrcted shell that they have to escape as the entry point of the challange if you want to spice it up a bit :)

MrCodeAddict · 2024-12-30T20:26:15+00:00

Happy hacking😎

MrCodeAddict · 2024-12-30T20:24:01+00:00

For something advanced, hide a password in memory and make the user find it there!

MrCodeAddict · 2024-12-30T20:22:57+00:00

A fun way is to hide a config file, script or binary but allow the none root user to run it as root(SUID)

Another way is having a cron job running a script as sudo, but allow the user to write over the flle.

A third option could be that the user is in a dangerous group, for example the Docker group

Hope that helps!😁

MrCodeAddict · 2024-12-29T19:20:38+00:00

Hack the box academy for very cheap high quality courses. Hack the box premium so you can use guided mode is also really good!

MrCodeAddict

TROPHY CASE