{"generator":"Jekyll","link":[{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/feed.xml","rel":"self","type":"application\/atom+xml"}},{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/","rel":"alternate","type":"text\/html"}}],"updated":"2026-04-04T17:48:46+00:00","id":"https:\/\/0xdf.gitlab.io\/feed.xml","title":"0xdf hacks stuff","subtitle":"CTF solutions, malware analysis, home lab development","entry":[{"title":"HTB: DarkZero","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/04\/04\/htb-darkzero.html","rel":"alternate","type":"text\/html","title":"HTB: DarkZero"}},"published":"2026-04-04T13:45:00+00:00","updated":"2026-04-04T13:45:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/04\/04\/htb-darkzero","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-darkzero"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"htb-darkzero"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"mssql"}},{"@attributes":{"term":"windows"}},{"@attributes":{"term":"active-directory"}},{"@attributes":{"term":"netexec"}},{"@attributes":{"term":"netexec-hosts"}},{"@attributes":{"term":"assume-breach"}},{"@attributes":{"term":"bloodhound"}},{"@attributes":{"term":"netexec-rid-brute"}},{"@attributes":{"term":"netexec-bloodhound"}},{"@attributes":{"term":"rusthound-ce"}},{"@attributes":{"term":"adcs"}},{"@attributes":{"term":"domain-trust"}},{"@attributes":{"term":"impacket"}},{"@attributes":{"term":"mssqlclient"}},{"@attributes":{"term":"mssql-linked-servers"}},{"@attributes":{"term":"xp-cmdshell"}},{"@attributes":{"term":"seimpersonate"}},{"@attributes":{"term":"named-pipe"}},{"@attributes":{"term":"service-logon"}},{"@attributes":{"term":"recover-seimpersonate"}},{"@attributes":{"term":"htb-signed"}},{"@attributes":{"term":"godpotato"}},{"@attributes":{"term":"runascs"}},{"@attributes":{"term":"rubeus"}},{"@attributes":{"term":"chisel"}},{"@attributes":{"term":"tunnel"}},{"@attributes":{"term":"ticketconverter"}},{"@attributes":{"term":"describeticket"}},{"@attributes":{"term":"certutil"}},{"@attributes":{"term":"certipy"}},{"@attributes":{"term":"proxychains"}},{"@attributes":{"term":"changepasswd"}},{"@attributes":{"term":"ntlm-authentication-reflection"}},{"@attributes":{"term":"cve-2025-33073"}},{"@attributes":{"term":"cve-2025-58726"}},{"@attributes":{"term":"cve-2025-54918"}},{"@attributes":{"term":"credential-target-information"}},{"@attributes":{"term":"cmti"}},{"@attributes":{"term":"dns-record"}},{"@attributes":{"term":"dnstool"}},{"@attributes":{"term":"htb-darkcorp"}},{"@attributes":{"term":"htb-vulncicada"}},{"@attributes":{"term":"coerce"}},{"@attributes":{"term":"petitpotam"}},{"@attributes":{"term":"responder"}},{"@attributes":{"term":"netexec-coerce-plus"}},{"@attributes":{"term":"ntlmrelayx"}},{"@attributes":{"term":"ntlmrelayx-partial-mic"}},{"@attributes":{"term":"psexec-py"}},{"@attributes":{"term":"cve-2024-30088"}},{"@attributes":{"term":"metasploit"}},{"@attributes":{"term":"msfvenom"}},{"@attributes":{"term":"meterpreter"}},{"@attributes":{"term":"local-exploit-suggester"}},{"@attributes":{"term":"enum-adtrusts"}},{"@attributes":{"term":"htb-ghost"}},{"@attributes":{"term":"xp-dirtree"}},{"@attributes":{"term":"secretsdump"}},{"@attributes":{"term":"evil-winrm-py"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Snapped","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/04\/01\/htb-snapped.html","rel":"alternate","type":"text\/html","title":"HTB: Snapped"}},"published":"2026-04-01T09:00:00+00:00","updated":"2026-04-01T09:00:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/04\/01\/htb-snapped","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-snapped"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-snapped"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"nginx"}},{"@attributes":{"term":"ffuf"}},{"@attributes":{"term":"subdomain"}},{"@attributes":{"term":"feroxbuster"}},{"@attributes":{"term":"nginx-ui"}},{"@attributes":{"term":"cryptography"}},{"@attributes":{"term":"cve-2026-27944"}},{"@attributes":{"term":"openssl"}},{"@attributes":{"term":"credential"}},{"@attributes":{"term":"password-reuse"}},{"@attributes":{"term":"hashcat"}},{"@attributes":{"term":"netexec"}},{"@attributes":{"term":"snap"}},{"@attributes":{"term":"snapd"}},{"@attributes":{"term":"cve-2026-3888"}},{"@attributes":{"term":"race-condition"}},{"@attributes":{"term":"shared-object"}},{"@attributes":{"term":"sqlite"}},{"@attributes":{"term":"bcrypt"}},{"@attributes":{"term":"setuid"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Principal","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/03\/30\/htb-principal.html","rel":"alternate","type":"text\/html","title":"HTB: Principal"}},"published":"2026-03-30T09:00:00+00:00","updated":"2026-03-30T09:00:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/03\/30\/htb-principal","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-principal"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-principal"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"spring-boot"}},{"@attributes":{"term":"pac4j"}},{"@attributes":{"term":"java"}},{"@attributes":{"term":"javascript"}},{"@attributes":{"term":"jwt"}},{"@attributes":{"term":"jwks"}},{"@attributes":{"term":"feroxbuster"}},{"@attributes":{"term":"cve-2026-29000"}},{"@attributes":{"term":"python"}},{"@attributes":{"term":"password-reuse"}},{"@attributes":{"term":"credentials"}},{"@attributes":{"term":"ssh"}},{"@attributes":{"term":"ssh-certificate"}},{"@attributes":{"term":"htb-resource"}},{"@attributes":{"term":"hydra"}},{"@attributes":{"term":"password-spray"}},{"@attributes":{"term":"ssh-keygen"}},{"@attributes":{"term":"jwt-forge"}},{"@attributes":{"term":"jwt-rsa"}},{"@attributes":{"term":"auth-bypass"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Browsed","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/03\/28\/htb-browsed.html","rel":"alternate","type":"text\/html","title":"HTB: Browsed"}},"published":"2026-03-28T13:45:00+00:00","updated":"2026-03-28T13:45:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/03\/28\/htb-browsed","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-browsed"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-browsed"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"chrome-extension"}},{"@attributes":{"term":"feroxbuster"}},{"@attributes":{"term":"gitea"}},{"@attributes":{"term":"python"}},{"@attributes":{"term":"flask"}},{"@attributes":{"term":"javascript"}},{"@attributes":{"term":"nginx"}},{"@attributes":{"term":"ssrf"}},{"@attributes":{"term":"bash-arithmetic-injection"}},{"@attributes":{"term":"htb-interface"}},{"@attributes":{"term":"htb-eureka"}},{"@attributes":{"term":"sudo"}},{"@attributes":{"term":"source-code"}},{"@attributes":{"term":"setuid"}},{"@attributes":{"term":"python-bytecode"}},{"@attributes":{"term":"python-marshal"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Conversor","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/03\/21\/htb-conversor.html","rel":"alternate","type":"text\/html","title":"HTB: Conversor"}},"published":"2026-03-21T13:45:00+00:00","updated":"2026-03-21T13:45:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/03\/21\/htb-conversor","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-conversor"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"htb-conversor"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"burp"}},{"@attributes":{"term":"burp-repeater"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"flask"}},{"@attributes":{"term":"python"}},{"@attributes":{"term":"source-code"}},{"@attributes":{"term":"arbitrary-write"}},{"@attributes":{"term":"directory-traversal"}},{"@attributes":{"term":"os-path-join"}},{"@attributes":{"term":"htb-opensource"}},{"@attributes":{"term":"htb-onlyforyou"}},{"@attributes":{"term":"htb-yummy"}},{"@attributes":{"term":"htb-titanic"}},{"@attributes":{"term":"xslt-injection"}},{"@attributes":{"term":"cve-2024-48990"}},{"@attributes":{"term":"cron"}},{"@attributes":{"term":"crackstation"}},{"@attributes":{"term":"password-reuse"}},{"@attributes":{"term":"setuid"}},{"@attributes":{"term":"gtfobins"}},{"@attributes":{"term":"needrestart"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Gavel","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/03\/14\/htb-gavel.html","rel":"alternate","type":"text\/html","title":"HTB: Gavel"}},"published":"2026-03-14T09:00:00+00:00","updated":"2026-03-14T09:00:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/03\/14\/htb-gavel","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-gavel"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-gavel"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"php"}},{"@attributes":{"term":"git-dumper"}},{"@attributes":{"term":"source-code"}},{"@attributes":{"term":"idor"}},{"@attributes":{"term":"sqli"}},{"@attributes":{"term":"sqli-php"}},{"@attributes":{"term":"sqli-pdo"}},{"@attributes":{"term":"hashcat"}},{"@attributes":{"term":"bcrypt"}},{"@attributes":{"term":"php-runkit"}},{"@attributes":{"term":"password-reuse"}},{"@attributes":{"term":"credential"}},{"@attributes":{"term":"ssh-denyusers"}},{"@attributes":{"term":"ghidra"}},{"@attributes":{"term":"reverse-engineering"}},{"@attributes":{"term":"php-ini"}},{"@attributes":{"term":"php-disable-functions"}},{"@attributes":{"term":"php-open-basedir"}},{"@attributes":{"term":"tmp-sandboxes"}},{"@attributes":{"term":"privatetmp"}},{"@attributes":{"term":"systemd"}},{"@attributes":{"term":"unix-socket"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Expressway","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/03\/07\/htb-expressway.html","rel":"alternate","type":"text\/html","title":"HTB: Expressway"}},"published":"2026-03-07T14:45:00+00:00","updated":"2026-03-07T14:45:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/03\/07\/htb-expressway","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-expressway"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"htb-expressway"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"udp"}},{"@attributes":{"term":"ike"}},{"@attributes":{"term":"ike-scan"}},{"@attributes":{"term":"ike-aggressive"}},{"@attributes":{"term":"ipsec"}},{"@attributes":{"term":"vpn"}},{"@attributes":{"term":"hashcat"}},{"@attributes":{"term":"tftp"}},{"@attributes":{"term":"cisco-config"}},{"@attributes":{"term":"squid"}},{"@attributes":{"term":"sudo"}},{"@attributes":{"term":"cve-2025-32463"}},{"@attributes":{"term":"chroot"}},{"@attributes":{"term":"nsswitch"}},{"@attributes":{"term":"cve-2025-32462"}},{"@attributes":{"term":"sudoers"}},{"@attributes":{"term":"strongswan"}},{"@attributes":{"term":"password-reuse"}},{"@attributes":{"term":"debian"}},{"@attributes":{"term":"setuid"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Barrier","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/03\/03\/htb-barrier.html","rel":"alternate","type":"text\/html","title":"HTB: Barrier"}},"published":"2026-03-03T10:00:00+00:00","updated":"2026-03-03T10:00:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/03\/03\/htb-barrier","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-barrier"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"htb-barrier"}},{"@attributes":{"term":"vulnlab"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"lft"}},{"@attributes":{"term":"container"}},{"@attributes":{"term":"gitlab"}},{"@attributes":{"term":"python"}},{"@attributes":{"term":"tomcat"}},{"@attributes":{"term":"feroxbuster"}},{"@attributes":{"term":"authentik"}},{"@attributes":{"term":"saml"}},{"@attributes":{"term":"guacamole"}},{"@attributes":{"term":"cve-2024-45409"}},{"@attributes":{"term":"cyberchef"}},{"@attributes":{"term":"gitlab-cicd"}},{"@attributes":{"term":"ffuf"}},{"@attributes":{"term":"subdomain"}},{"@attributes":{"term":"nginx"}},{"@attributes":{"term":"docker"}},{"@attributes":{"term":"mysql"}},{"@attributes":{"term":"bash-history"}},{"@attributes":{"term":"burp"}},{"@attributes":{"term":"burp-proxy"}},{"@attributes":{"term":"password-reuse"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Guardian","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/02\/28\/htb-guardian.html","rel":"alternate","type":"text\/html","title":"HTB: Guardian"}},"published":"2026-02-28T14:45:00+00:00","updated":"2026-02-28T14:45:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/02\/28\/htb-guardian","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-guardian"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-guardian"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"ubuntu"}},{"@attributes":{"term":"subdomain"}},{"@attributes":{"term":"ffuf"}},{"@attributes":{"term":"feroxbuster"}},{"@attributes":{"term":"php"}},{"@attributes":{"term":"idor"}},{"@attributes":{"term":"gitea"}},{"@attributes":{"term":"source-code"}},{"@attributes":{"term":"xss"}},{"@attributes":{"term":"phpspreadsheet"}},{"@attributes":{"term":"cve-2025-22131"}},{"@attributes":{"term":"xss-cookie"}},{"@attributes":{"term":"csrf"}},{"@attributes":{"term":"lfi"}},{"@attributes":{"term":"php-filter"}},{"@attributes":{"term":"php-filter-injection"}},{"@attributes":{"term":"htb-updown"}},{"@attributes":{"term":"htb-encoding"}},{"@attributes":{"term":"htb-pollution"}},{"@attributes":{"term":"htb-checker"}},{"@attributes":{"term":"youtube"}},{"@attributes":{"term":"hashcat"}},{"@attributes":{"term":"vim"}},{"@attributes":{"term":"netexec"}},{"@attributes":{"term":"sudo"}},{"@attributes":{"term":"ghidra"}},{"@attributes":{"term":"reverse-engineering"}},{"@attributes":{"term":"apache2ctl"}},{"@attributes":{"term":"directory-traversal"}},{"@attributes":{"term":"symlink"}},{"@attributes":{"term":"shared-object"}},{"@attributes":{"term":"mysql"}},{"@attributes":{"term":"exiftool"}},{"@attributes":{"term":"default-creds"}},{"@attributes":{"term":"password-reuse"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"HTB: Bruno","link":{"@attributes":{"href":"https:\/\/0xdf.gitlab.io\/2026\/02\/24\/htb-bruno.html","rel":"alternate","type":"text\/html","title":"HTB: Bruno"}},"published":"2026-02-24T10:00:00+00:00","updated":"2026-02-24T10:00:00+00:00","id":"https:\/\/0xdf.gitlab.io\/2026\/02\/24\/htb-bruno","content":{"@attributes":{"type":"html"}},"author":{"name":{}},"category":[{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"htb-bruno"}},{"@attributes":{"term":"pentest"}},{"@attributes":{"term":"bug-bounty"}},{"@attributes":{"term":"ctf"}},{"@attributes":{"term":"htb-bruno"}},{"@attributes":{"term":"hackthebox"}},{"@attributes":{"term":"vulnlab"}},{"@attributes":{"term":"nmap"}},{"@attributes":{"term":"windows"}},{"@attributes":{"term":"active-directory"}},{"@attributes":{"term":"kerberos"}},{"@attributes":{"term":"iis"}},{"@attributes":{"term":"asp-dot-net"}},{"@attributes":{"term":"ffuf"}},{"@attributes":{"term":"subdomain"}},{"@attributes":{"term":"netexec"}},{"@attributes":{"term":"feroxbuster"}},{"@attributes":{"term":"reverse-engineering"}},{"@attributes":{"term":"dotnet"}},{"@attributes":{"term":"dotpeek"}},{"@attributes":{"term":"kerbrute"}},{"@attributes":{"term":"as-rep-roast"}},{"@attributes":{"term":"hashcat"}},{"@attributes":{"term":"zipslip"}},{"@attributes":{"term":"python"}},{"@attributes":{"term":"python-zipfile"}},{"@attributes":{"term":"dll-hijack"}},{"@attributes":{"term":"procmon"}},{"@attributes":{"term":"msfvenom"}},{"@attributes":{"term":"dll"}},{"@attributes":{"term":"ldap-signing"}},{"@attributes":{"term":"kerberos-relay"}},{"@attributes":{"term":"krbrelayup"}},{"@attributes":{"term":"getclsid-ps1"}},{"@attributes":{"term":"service-ticket"}},{"@attributes":{"term":"getst"}},{"@attributes":{"term":"wmiexec"}},{"@attributes":{"term":"rbcd"}},{"@attributes":{"term":"impacket"}},{"@attributes":{"term":"dcom"}},{"@attributes":{"term":"clsid"}},{"@attributes":{"term":"s4u2self"}},{"@attributes":{"term":"s4u2proxy"}}],"summary":{"@attributes":{"type":"html"}}}]}