Home

What a Journey it has been. I have finished all the modules of the CBBH path. And best of all I have learned a lot when it comes to the modules, myself and what I can do to get better. Each modules have been challenging and will really push you to think critically on how each vulnerability will be exploited. There were times that I was strugg...

The includes my learnings in SSRF in the Server Side Attacks module of the CBBH path. SSRF or Server Site Request Forgery involves user supplied malicious URLS in order to access remote resources. This is possible through a feature in the website that is vulnerable to ssrf in which the user can manipulate this request inorder to access certain...

Learnings from File Upload vulnerability. The module tackles about what is the file upload vulnerability, the types of filters usually used and why they are utilized, and how to mitigate these kinds of vulnerabilities. File Upload vulnerability utilizes nonvalidated file uploads to execute malicious code. These can be in the example of upload...

Subdomain enumeration is the process of determining valid subdomains to expand the attack surface for more potential points of vulnerability. The different methods TryHackMe taught were: Using OSINT through SSL/TLS, and using the trusty Search Engine such as Google. Through Domain Bruteforcing by using a tool.

This room in TryHackMe, helped me learn how the devtools will be used in the context of cybersecurity. From a Web Developer’s perspective using the page source let’s me see how the website looks when deployed. From a pentesting perspective, I can utilize this to check any hidden files or information. Then there is also the inspector tool wher...

I started learning Bash Scripting as I wanted to improve on my skills. I started to learn it using what I learnt from a programming perspective. It started with learning with what is shebang. #!/bin/bash Next it involved with learning how to print inputs using echo. #!/bin/bash echo" Hello World" Also learned how to use variables in bas...

This time I started to learn the basic Linux Commands on TryHackMe. This helped me get familiar which commands I’ll be using in the long run. sudo - lets you perform restricted commands. ls- this lists out the files or directories in a particular system. cat- this allows you to view contents of a file. cd - lets you navigate between different d...

This is the start of my journey in TryHackMe by starting with the Junior Penetration Tester Path. The Pentesting Fundamentals room gives a good walkthrough of Penetration Testing. The room helped me understand that Penetration Testing is an act of assessing a companies security defenses in order to strengthen it and protect its information. Th...