offsec – Page 4 – nPm Hacks

Offsec Proving Grounds Walkthrough – Twiggy

By nPm August 29, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

🚨Walkthrough of the machine called "Twiggy" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. I had some issues with figuring out how to take advantage of the exploit but eventually prevailed after some experimentation. We take advantage of a RCE in ZeroMQ ZMTP software…

Offsec Proving Grounds Walkthrough – Detection

By nPm August 15, 2025Ethical Hacking, Hacking, Linux, Offsec, Python, Security, Tutorial, Walkthrough

Walkthrough of the machine called "Detection" in the OffSec Proving Grounds. We exploit web software called changedetection.io. We download an exploit, create a python virtual environment and get a reverse shell. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it do not…

Offsec Proving Grounds Walkthrough – HUB

By nPm August 1, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Security, Tutorial, Walkthrough

New video ***SPOILER*** Walkthrough of the machine called "HUB" in the OffSec Proving Grounds...don't watch unless you want help getting through the machine. We exploit Fuguhub and obtain a reverse root shell my manipulating the code on the we application. Very quick pwn for me - this machine wasn't too…

Offsec Proving Grounds Walkthrough – CVE-2024-48061

By nPm July 7, 2025Ethical Hacking, Hacking, Networking, Offsec, Security, Tutorial, Walkthrough

New Vid! (sorry for posting later than usual the holiday got me!) ***SPOILER***Walkthrough of the OffSec machine called "CVE-2024-48061" in the Proving Grounds...we exploit LangFlow using an RCE flaw, don't watch unless you want help getting through the machine. https://youtu.be/hNSSYO-dxwM?si=XVTJCBjOlzgxG-x1

Offsec Proving Grounds Walkthrough – PyLoad

By nPm June 20, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

New OffSec Proving Grounds Walkthrough of a machine called Pyload. In this video we create a python virtual environment and use a python exploit to gain root access on the machine by exploiting an application called Pyload. **SPOILERS** I show you how to pwn the box, so if you don't…

Offsec Proving Grounds Walkthrough – CVE-2024-25180

By nPm May 24, 2025Ethical Hacking, Hacking, Linux, Offsec, Security, Tutorial, Walkthrough

New video, this is a quick one, don't understand the intermediate rating at all but hey who am I to judge 😁. This is a walkthrough of the machine called "CVE-2024-25180" in the OffSec Proving Grounds and involves exploiting PDF Make with a shell script we found on GitHub...don't watch…

Offsec Proving Grounds Walkthrough – CVE-2023-6019

By nPm May 2, 2025Ethical Hacking, Hacking, Linux, Offsec, Python, Security, Walkthrough

Another OffSec walkthrough, this time we are doing a machine called CVE-2023-6019...so guess what vulnerability we exploit here, LOL. I show you how to setup a python virtual environment and run the exploit to get a root shell. ***SPOILER***Walkthrough of the machine called "CVE-2023-6019" in the Offsec Proving Grounds...don't watch…

Offsec Proving Grounds Walkthrough – Wheels

By nPm April 18, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Security, Tutorial, Walkthrough

New video walkthrough of an OffSec Proving Grounds machine called Wheels. This machine was difficult for me. I use tools like: Burp Suite and Hashcat to exploit this machine. ***SPOILERS*** I show you how to pwn the box, so if you don't want help with it do not watch this…

Offsec Proving Grounds Walkthrough – Exghost

By nPm March 21, 2025Ethical Hacking, Hacking, Linux, Networking, Offsec, Python, Security, Tutorial, Walkthrough

New OffSec Proving Grounds walkthrough. This time we tackle a machine called Exghost. This walkthrough involves: ☑️Brute forcing credentials ☑️Reading through a Wireshark packet capture file ☑️Crafting a malicious image to exploit ExifTool ☑️Exploiting a kernel vulnerability I had to get creative at the end and I leaned a bunch…

Walkthrough – Offsec Proving Grounds – Astronaut

By nPm February 21, 2025Ethical Hacking, Hacking, Linux, Metasploit, Networking, Offsec, Security, Tutorial, Walkthrough

New video - OffSec Proving Grounds Walkthrough of "Astronaut". This was an interesting box that we use many tools an techniques to pwn including Metasploit Framework, PHP reverse shell, and GTFObins! This is a complete walkthrough of the machine so don't watch the video unless you want help compromising the…