Hack The Box: Grandpa write-up

Grandpa is an easy Windows OS box from HackTheBox. Hacking it required exploiting Microsoft IIS and Windows kernel vulnerabilities. Enumeration The first step was running an nmap scan. Figure 1 - nmap output The scan showed only port 80 was open. I initially tried exploiting the COPY header because of my experience with Granny, but … Continue reading Hack The Box: Grandpa write-up

MS-500 exam review

I was recently certified as a Microsoft 365 Security Administrator Associate after sitting and passing the MS-500 exam. This exam was different from previous security certifications I've done in that it examined applied knowledge, as opposed to theoretical knowledge like the CISSP or CCSP. This post outlines my experience attempting the MS-500 exam, the resources … Continue reading MS-500 exam review