Home

Hey there, it has been a while! I have been pretty MIA the past two months due to focused studying. A year and a half of dedication to learning what I started. I always have been curious about cybersecurity but never found where could I learn them during 2018. It was me just playing Watch Dogs and that piqued my interest. I never actually con...

What a Journey it has been. I have finished all the modules of the CBBH path. And best of all I have learned a lot when it comes to the modules, myself and what I can do to get better. Each modules have been challenging and will really push you to think critically on how each vulnerability will be exploited. There were times that I was strugg...

The includes my learnings in SSRF in the Server Side Attacks module of the CBBH path. SSRF or Server Site Request Forgery involves user supplied malicious URLS in order to access remote resources. This is possible through a feature in the website that is vulnerable to ssrf in which the user can manipulate this request inorder to access certain...

Learnings from File Upload vulnerability. The module tackles about what is the file upload vulnerability, the types of filters usually used and why they are utilized, and how to mitigate these kinds of vulnerabilities. File Upload vulnerability utilizes nonvalidated file uploads to execute malicious code. These can be in the example of upload...

Subdomain enumeration is the process of determining valid subdomains to expand the attack surface for more potential points of vulnerability. The different methods TryHackMe taught were: Using OSINT through SSL/TLS, and using the trusty Search Engine such as Google. Through Domain Bruteforcing by using a tool.

This room in TryHackMe, helped me learn how the devtools will be used in the context of cybersecurity. From a Web Developer’s perspective using the page source let’s me see how the website looks when deployed. From a pentesting perspective, I can utilize this to check any hidden files or information. Then there is also the inspector tool wher...

I started learning Bash Scripting as I wanted to improve on my skills. I started to learn it using what I learnt from a programming perspective. It started with learning with what is shebang. #!/bin/bash Next it involved with learning how to print inputs using echo. #!/bin/bash echo" Hello World" Also learned how to use variables in bas...

This time I started to learn the basic Linux Commands on TryHackMe. This helped me get familiar which commands I’ll be using in the long run. sudo - lets you perform restricted commands. ls- this lists out the files or directories in a particular system. cat- this allows you to view contents of a file. cd - lets you navigate between different d...