2026 – Page 2 – nPm Hacks

Hack the Box Walkthrough – Knife

By nPm January 23, 2026Ethical Hacking, Hacking, HTB, Linux, Networking, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Knife". It features the exploitation of PHP 8.1 using Wappalyzer and a python script RCE to get a shell, getting a better shell using busybox, and privesc by exploiting a binary due to dangerous sudo "no password" misconfiguration. I…

Offsec Proving Grounds Walkthrough – Air

By nPm January 19, 2026Ethical Hacking, Hacking, Linux, Offsec, Security, Tutorial, Walkthrough

This is a walkthrough of OffSec Proving Grounds machine "Air". I haven't seen any walkthroughs of this machine out there! In this video we a directory traversal exploit to access an SSH private key, we then use tools like chisel to take advantage of Aria2 software by uploading our own…

How to write a Windows 32-bit buffer overflow!

By nPm January 17, 2026Coding, Ethical Hacking, Hacking, Linux, msfvenom, Networking, Python, Security, Tutorial, Walkthrough

In this video we write a 32 bit buffer overflow together in python using tools like Immunity Debugger, Mona, and msfvenom. I show you how to: 1.) Fuzz the application 2.) Determine the offset 3.) Control the eip cpu register 4.) Determine your bad characters (manually and using Mona) 5.)…

Hack the Box Walkthrough – Data

By nPm January 14, 2026Ethical Hacking, Hacking, HTB, Linux, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Data". It features the exploitation of grafana using directory traversal, password cracking, and privesc by exploiting docker due to dangerous sudo "no password" misconfiguration. I learned a lot tackling this one. ***SPOILERS*** I show you how to pwn the…

Offsec Proving Grounds Walkthrough – Interface

By nPm January 11, 2026Ethical Hacking, Hacking, Linux, Networking, Node.js, Offsec, Python, Security, Tutorial, Walkthrough

This was a good one! This is a walkthrough of OffSec Proving Grounds machine "Interface". I haven't seen any walkthroughs of this machine out there. In this video we use hydra to brute force a node.js web application after using the browser's developer tools to discover API endpoints (user list).…

Offsec Proving Grounds Walkthrough – Filebrowser

By nPm January 9, 2026Ethical Hacking, Hacking, Linux, Offsec, Security, Tutorial, Walkthrough

Walkthrough of the machine called "Filebrowser" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. In this video we take advantage of weak credentials for an online file browsing application, take advantage of SSH keys, then escalate using incorrectly set SUID on a binary. https://youtu.be/DHX2XFdpG5g

TryHackMe Walkthrough – Team

By nPm January 7, 2026Ethical Hacking, Hacking, Linux, Networking, Python, Security, TryHackMe, Tutorial, Walkthrough

This is a walkthrough of the TryHackMe machine called "Team". The machine is a linux box running Apache and this video features the use of gobuster, local file inclusion vulnerabilities, Burp Suite, and abuse of sudo no password! I learned a lot tackling this one. ***SPOILERS*** I show you how…

Offsec Proving Grounds Walkthrough – RussianDolls

By nPm January 4, 2026Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

This is a walkthrough of OffSec Proving Grounds machine "RussianDolls". I haven't seen many, if any walkthroughs of this machine. I wrote a custom SSRF script to brute force ports (it could have been very simple, but I am a psychopath and over engineered it), link to Github in video…

Hack the Box Walkthrough – PermX

By nPm January 2, 2026Ethical Hacking, Hacking, HTB, Linux, Networking, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "PermX". It features the use of fuff, RCE exploits, manipulation of shell scripts and more. I learned a lot tackling this one. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it…

“oscp.exe” OVERFLOW1 – Simple Buffer Overflow Exploit Code

By nPm January 1, 2026Coding, Ethical Hacking, Hacking, Linux, msfvenom, Networking, Offsec, Python, Security, Tutorial

First buffer overflow exploit done. "oscp.exe" has 10 overflows you can practice on, this is for "OVERFLOW1". Using tools like Immunity Debugger and Mona we followed a proven set of steps to create exploit in Python3: ✔️ Fuzz the app to determine around when it would crash by flooding buffer…