Tutorial Archives - nPm Hacks

Offsec Proving Grounds Walkthrough – Vault

By nPm January 26, 2026Ethical Hacking, Hacking, Linux, Networking, Offsec, Security, Tutorial, Uncategorized, Walkthrough

Walkthrough of the machine called "Vault" in the OffSec Proving Grounds...This is a Windows machine rated as hard, don't watch unless you want help getting through the machine. In this machine we use phishing type links on an open SMB share to catch hashes using responder for initial access, after…

Hack the Box Walkthrough – Knife

By nPm January 23, 2026Ethical Hacking, Hacking, HTB, Linux, Networking, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Knife". It features the exploitation of PHP 8.1 using Wappalyzer and a python script RCE to get a shell, getting a better shell using busybox, and privesc by exploiting a binary due to dangerous sudo "no password" misconfiguration. I…

Offsec Proving Grounds Walkthrough – Air

By nPm January 19, 2026Ethical Hacking, Hacking, Linux, Offsec, Security, Tutorial, Walkthrough

This is a walkthrough of OffSec Proving Grounds machine "Air". I haven't seen any walkthroughs of this machine out there! In this video we a directory traversal exploit to access an SSH private key, we then use tools like chisel to take advantage of Aria2 software by uploading our own…

How to write a Windows 32-bit buffer overflow!

By nPm January 17, 2026Coding, Ethical Hacking, Hacking, Linux, msfvenom, Networking, Python, Security, Tutorial, Walkthrough

In this video we write a 32 bit buffer overflow together in python using tools like Immunity Debugger, Mona, and msfvenom. I show you how to: 1.) Fuzz the application 2.) Determine the offset 3.) Control the eip cpu register 4.) Determine your bad characters (manually and using Mona) 5.)…

Hack the Box Walkthrough – Data

By nPm January 14, 2026Ethical Hacking, Hacking, HTB, Linux, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Data". It features the exploitation of grafana using directory traversal, password cracking, and privesc by exploiting docker due to dangerous sudo "no password" misconfiguration. I learned a lot tackling this one. ***SPOILERS*** I show you how to pwn the…

Offsec Proving Grounds Walkthrough – Interface

By nPm January 11, 2026Ethical Hacking, Hacking, Linux, Networking, Node.js, Offsec, Python, Security, Tutorial, Walkthrough

This was a good one! This is a walkthrough of OffSec Proving Grounds machine "Interface". I haven't seen any walkthroughs of this machine out there. In this video we use hydra to brute force a node.js web application after using the browser's developer tools to discover API endpoints (user list).…

Offsec Proving Grounds Walkthrough – Filebrowser

By nPm January 9, 2026Ethical Hacking, Hacking, Linux, Offsec, Security, Tutorial, Walkthrough

Walkthrough of the machine called "Filebrowser" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. In this video we take advantage of weak credentials for an online file browsing application, take advantage of SSH keys, then escalate using incorrectly set SUID on a binary. https://youtu.be/DHX2XFdpG5g

TryHackMe Walkthrough – Team

By nPm January 7, 2026Ethical Hacking, Hacking, Linux, Networking, Python, Security, TryHackMe, Tutorial, Walkthrough

This is a walkthrough of the TryHackMe machine called "Team". The machine is a linux box running Apache and this video features the use of gobuster, local file inclusion vulnerabilities, Burp Suite, and abuse of sudo no password! I learned a lot tackling this one. ***SPOILERS*** I show you how…

Offsec Proving Grounds Walkthrough – RussianDolls

By nPm January 4, 2026Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

This is a walkthrough of OffSec Proving Grounds machine "RussianDolls". I haven't seen many, if any walkthroughs of this machine. I wrote a custom SSRF script to brute force ports (it could have been very simple, but I am a psychopath and over engineered it), link to Github in video…

Hack the Box Walkthrough – PermX

By nPm January 2, 2026Ethical Hacking, Hacking, HTB, Linux, Networking, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "PermX". It features the use of fuff, RCE exploits, manipulation of shell scripts and more. I learned a lot tackling this one. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it…