Blog

File upload objects are commonly encountered during penetration tests of web applications. Developers use these objects to allow users to upload files to the system. There are many examples of file upload scenarios — users registering on a system uploading a profile photo, or users sending a CV to an organisation by uploading a file […]

The primary objective of penetration tests targeting Windows systems is to compromise all systems after gaining access to one. For this reason, the final phase of the tests aims to compromise the DC (Domain Controller) server — which enables systems to be managed from a common point and serves the primary server role in an […]

Kali is a distribution that comes with a “root” user by default. With the upcoming 2020.1 release, a decision was made to change this system. With the new release, a new non-root user will be defined as the default user during Kali installation. The new version is planned to be released at the end of […]

Undoubtedly, Windows Defender, which continues to be developed by Microsoft, attracts the attention of many people in the industry. Having succeeded in rising above many antivirus companies in recent years, Defender catches numerous potentially critical malicious code scripts with its malware-focused functions. But what does Defender owe this strength to? First of all, it should […]

This article describes the solution steps for the machine named “PRIVIATECH” found on the PriviaHub platform, which has since been retired. First, a scan was initiated to detect the open ports on the machine, the current services running on the open ports, and the operating system. The NMAP tool was used for the scanning operation, […]

This article explains the walkthrough steps of the machine named “ACCESS”, which is hosted on the PriviaHub platform and has been retired. First, a scan was launched in order to detect the open ports on the machine, the current services running on the open ports and the operating system. For the scan operation, the NMAP […]