Rex Kyris's Avatar

Rex Kyris

@rexkyris.bsky.social

https://x.com/@rexkyris https://rexkyris.github.io/

4 Followers  |  1 Following  |  5 Posts  |  Joined: 21.01.2025  |  1.3969

Latest posts by rexkyris.bsky.social on Bluesky

Preview
HTB - Certificate by using zip concatenation we will bypass the file upload restrictions and upload a php webshell to gain the initial access, after upgrading the access to silver beacon we will setup a port forward to...

HackTheBox - Certificate write-up
> File upload
> Password reuse
> Kerberos pre-auth timestamp
decryption
> Adcs ESC3
> CA certificate
rexkyris.github.io/posts/certif...
#HackTheBox #penetesting #redteaming #hacking #infosec

19.10.2025 19:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
HTB - Fluffy by exploiting CVE-2025-24071 we will get p.agila’s netntlm hash and crack it with hashcat, after that we will setup shadow credentials for ca_svc account and finally exploit AD CS ESC16 to compromise ...

HackTheBox - Fluffy write-up
> CVE-2025-24071
> Shadow Credentials
> AD CS ESC16
rexkyris.github.io/posts/fluffy/
#HackTheBox #CVE #infosec #Pentesting #redteam #hacking

22.09.2025 12:54 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
HTB - Haze by exploiting an lfi vulnerability in splunk, we will retrieve paul’s encrypted password inside authentication.conf file, after decrypting the password and spraying it, we find that the user mark is u...

HackTheBox - Haze write-up
> splunk CVE-2024-36991
> password spraying
> shadow credentials
> SeImpersonatePrivilege
#HackTheBox #CVE #infosec #Pentesting #redteam #Hacking
rexkyris.github.io/posts/haze/

30.08.2025 21:41 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Initial Access - Beaconing From Browsers in todays blog post, i will chain browser cache smuggling, filefix and com-hijacking for initial access and persistence at the same time. the end objective of this chain is to make google chrome and m...

Beaconing From Browsers, chaining
> browser cache smuggling
> filefix
> com hijacking
For initial access and persistence.
#CyberSecurity #activedirectory #infosec #Pentesting #Hacking
rexkyris.github.io/posts/beacon...

24.08.2025 23:07 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
HTB - Scepter starting with an nfs share, we will grab pfx certificate files and use crackpkcs12 to recover their passwords, after recovering the password, we will use the certificate to authenticate to the domain ...

Hackthebox - Scepter writeup.
> unauthenticated nfs share
> bruteforcing certificate password
> adcs esc14
> dcsync
rexkyris.github.io/posts/scepter/
#hackthebox #htb #pentesting #cybersecurity #hacking #infosec #activedirectory

02.08.2025 14:26 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@rexkyris is following 1 prominent accounts