Offsec Archives - Page 2 of 4

Offsec Proving Grounds Walkthrough – Sorcerer

By nPm October 12, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

📣This is a walkthrough of the Offsec machine called "Sorcerer". I really enjoyed this one and there aren't too many walkthroughs of it available, so I hope this helps! It features exploitation using gobuster, script modification, scp, SSH Keys, and abusing binaries with the SUID set. I learned a lot…

Offsec Proving Grounds Walkthrough – Outdated

By nPm October 3, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the OffSec machine called "Outdated" (not to be confused with a Hack The Box machine of same name!). I haven't really seen many walkthroughs (if any) of this Offsec machine so, you're welcome! It features the exploitation of mPDF using local file inclusion, SSH port…

Offsec Proving Grounds Walkthrough – RubyDome

By nPm September 26, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

🆕🆕🆕 walkthrough! Walkthrough of the machine called "RubyDome" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. In this machine we abuse pdfKit utilizing a python exploit to gain a shell and then escalate privileges using an incorrectly set "sudo no password" on a Ruby…

Offsec Proving Grounds Walkthrough – Twiggy

By nPm August 29, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

🚨Walkthrough of the machine called "Twiggy" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. I had some issues with figuring out how to take advantage of the exploit but eventually prevailed after some experimentation. We take advantage of a RCE in ZeroMQ ZMTP software…

Offsec Proving Grounds Walkthrough – Detection

By nPm August 15, 2025Ethical Hacking, Hacking, Linux, Offsec, Python, Security, Tutorial, Walkthrough

Walkthrough of the machine called "Detection" in the OffSec Proving Grounds. We exploit web software called changedetection.io. We download an exploit, create a python virtual environment and get a reverse shell. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it do not…

Offsec Proving Grounds Walkthrough – HUB

By nPm August 1, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Security, Tutorial, Walkthrough

New video ***SPOILER*** Walkthrough of the machine called "HUB" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. We exploit Fuguhub and obtain a reverse root shell my manipulating the code on the we application. Very quick pwn for me - this machine wasn't too…

Offsec Proving Grounds Walkthrough – CVE-2024-48061

By nPm July 7, 2025Ethical Hacking, Hacking, Networking, Offsec, Security, Tutorial, Walkthrough

New Vid! (sorry for posting later than usual the holiday got me!) ***SPOILER***Walkthrough of the OffSec machine called "CVE-2024-48061" in the Proving Grounds...we exploit LangFlow using an RCE flaw, don't watch unless you want help getting through the machine. https://youtu.be/hNSSYO-dxwM?si=XVTJCBjOlzgxG-x1

Offsec Proving Grounds Walkthrough – PyLoad

By nPm June 20, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

New OffSec Proving Grounds Walkthrough of a machine called Pyload. In this video we create a python virtual environment and use a python exploit to gain root access on the machine by exploiting an application called Pyload. **SPOILERS** I show you how to pwn the box, so if you don't…

Offsec Proving Grounds Walkthrough – CVE-2024-25180

By nPm May 24, 2025Ethical Hacking, Hacking, Linux, Offsec, Security, Tutorial, Walkthrough

New video, this is a quick one, don't understand the intermediate rating at all but hey who am I to judge 😁. This is a walkthrough of the machine called "CVE-2024-25180" in the OffSec Proving Grounds and involves exploiting PDF Make with a shell script we found on GitHub...don't watch…

Offsec Proving Grounds Walkthrough – CVE-2023-6019

By nPm May 2, 2025Ethical Hacking, Hacking, Linux, Offsec, Python, Security, Walkthrough

Another OffSec walkthrough, this time we are doing a machine called CVE-2023-6019...so guess what vulnerability we exploit here, LOL. I show you how to setup a python virtual environment and run the exploit to get a root shell. ***SPOILER***Walkthrough of the machine called "CVE-2023-6019" in the Offsec Proving Grounds...don't watch…