python Archives - nPm Hacks

How to write a Windows 32-bit buffer overflow!

By nPm January 17, 2026Coding, Ethical Hacking, Hacking, Linux, msfvenom, Networking, Python, Security, Tutorial, Walkthrough

In this video we write a 32 bit buffer overflow together in python using tools like Immunity Debugger, Mona, and msfvenom. I show you how to: 1.) Fuzz the application 2.) Determine the offset 3.) Control the eip cpu register 4.) Determine your bad characters (manually and using Mona) 5.)…

Hack the Box Walkthrough – Data

By nPm January 14, 2026Ethical Hacking, Hacking, HTB, Linux, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Data". It features the exploitation of grafana using directory traversal, password cracking, and privesc by exploiting docker due to dangerous sudo "no password" misconfiguration. I learned a lot tackling this one. ***SPOILERS*** I show you how to pwn the…

Offsec Proving Grounds Walkthrough – Interface

By nPm January 11, 2026Ethical Hacking, Hacking, Linux, Networking, Node.js, Offsec, Python, Security, Tutorial, Walkthrough

This was a good one! This is a walkthrough of OffSec Proving Grounds machine "Interface". I haven't seen any walkthroughs of this machine out there. In this video we use hydra to brute force a node.js web application after using the browser's developer tools to discover API endpoints (user list).…

Offsec Proving Grounds Walkthrough – RussianDolls

By nPm January 4, 2026Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

This is a walkthrough of OffSec Proving Grounds machine "RussianDolls". I haven't seen many, if any walkthroughs of this machine. I wrote a custom SSRF script to brute force ports (it could have been very simple, but I am a psychopath and over engineered it), link to Github in video…

Hack the Box Walkthrough – PermX

By nPm January 2, 2026Ethical Hacking, Hacking, HTB, Linux, Networking, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "PermX". It features the use of fuff, RCE exploits, manipulation of shell scripts and more. I learned a lot tackling this one. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it…

“oscp.exe” OVERFLOW1 – Simple Buffer Overflow Exploit Code

By nPm January 1, 2026Coding, Ethical Hacking, Hacking, Linux, msfvenom, Networking, Offsec, Python, Security, Tutorial

First buffer overflow exploit done. "oscp.exe" has 10 overflows you can practice on, this is for "OVERFLOW1". Using tools like Immunity Debugger and Mona we followed a proven set of steps to create exploit in Python3: ✔️ Fuzz the app to determine around when it would crash by flooding buffer…

Offsec Proving Grounds Walkthrough – Cobbles

By nPm December 29, 2025Docker, Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

Walkthrough of the machine called "Cobbles" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. We take advantage of Zoneminder using a python exploit, then use enumeration to figure out the proxy situation. We end up privilege escalating using the exact same exploit by taking…

Offsec Proving Grounds Walkthrough – Jordak

By nPm December 26, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

This is a walkthrough of "Jordak" in the OffSec Proving Grounds. In this video we take advantage of the Jorani leave management software and use tools like GTFOBins to privesc. ***SPOILER***Walkthrough of the machine called "Jordak" in the Offsec Proving Grounds...don't watch unless you want help getting through the machine.…

Reusable App Fuzzer for Simple Buffer Overflow Development

By nPm December 25, 2025Coding, Ethical Hacking, Hacking, Linux, Networking, Python, Security, Tutorial

Started doing some buffer overflow exploit development. Hoping to better understand some of the exploits used when doing CTF's and such. Nothing fancy, 32 bit vulnerable apps (on Windows 10) to try and learn about the process. I wrote an app fuzzer in python that is pretty re-usable. Takes IP…

Hack the Box Walkthrough – Bashed

By nPm December 22, 2025Ethical Hacking, Hacking, HTB, Linux, Networking, Python, Security, Tutorial, Walkthrough

This is a walkthrough of the Hack The Box machine called "Bashed". It involves PHP reverse shells, python scripts, sudo exploits, and more. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it do not watch this video. Hope this helps someone and…