March 2025 – robflemen.com

Hack the Box Walkthrough – Optimum

By rob flemen March 28, 2025Ethical Hacking, Hacking, HTB, Linux, Metasploit, Networking, Security, Tutorial, Walkthrough

Hack The Box walkthrough of a machine called Optimum. It involves exclusive use of the Metasploit Framework this time and I even show you how to use MSF's local exploit suggester to escalate privileges . The focus for the foothold is CVE-2014-6287. We then let Metasploit do its thing…

Offsec Proving Grounds Walkthrough – Exghost

By rob flemen March 21, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

New OffSec Proving Grounds walkthrough. This time we tackle a machine called Exghost. This walkthrough involves:

Brute forcing credentials

Reading through a Wireshark packet capture file

Crafting a malicious image to exploit ExifTool

Exploiting a kernel vulnerability I had to get creative at the end and I leaned a bunch…

Certification Review – ISC2 System Security Certified Professional – SSCP

By rob flemen March 14, 2025Certification Exams, ISC2, Review, Security

Hey there New Video Day! This video is my review of the ISC2 Systems Security Certified Practitioner (SSCP). The resources I used to study were Mike Chapple's LinkedIn Learning course and his study guide I bought off Amazon (highly recommend both!). It's a great exam and you will learn a…

Hack the Box Walkthrough – Cicada

By rob flemen March 7, 2025Ethical Hacking, Hacking, HTB, Linux, Networking, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Cicada". I learned a lot about Active Directory tackling this one. It features the use of tools like:

nxc

pypykatz

evil-winrm

***SPOILERS***

-- I show you how to pwn the box, so if you don't want…