Shoppy is an easy Linux machine that features a website with a login panel and a user search functionality, which is vulnerable to NoSQL injection. It can be exploited to obtain the password hashes...

https://tryhackme.com/room/bsidesgtthompson Enum root@ip-10-10-247-45:~# nmap -sV -sC -Pn 10.10.123.79 -oA thompson Starting Nmap 7.60 ( https://nmap.org ) at 2023-01-02 05:41 GMT Nmap scan rep...

Info Other CTFs from various sources Forensics Keys to the kingdom Info https://ghosttown.deadface.io/ Objective Extract image from pcap Solve Get an insight via network miner Ima...

Photobomb is an easy Linux machine where plaintext credentials are used to access an internal web application with a Download functionality that is vulnerable to a blind command injection. Once a f...

Soccer is an easy difficulty Linux machine that features a foothold based on default credentials, forfeiting access to a vulnerable version of the Tiny File Manager, which in turn leads to a revers...

Notes Only some scripts were noted (I was a super newbie at then) https://github.com/opabravo/balsn-ctf-2022