SecJournal
What's this?
A compilation of security related things I do and write about!
This book will be updated as frequently as I can while juggling school work, and it is not meant to be a high-maintenance project.
What am I doing now? I have decided to spend a year on bug bounties to learn and see what I can learn and find.
Content
whoami
whoami
Blogs
Random things I find interesting enough to write about:
Starting in InfoSec
My take on how to get into cybersecurity, about CTFs and hacking:
Web Vulnerabilities
Stuff about MVC, web vulnerabilities, Portswigger Web Security Academy Labs writeups with exploit scripts and disclosed bugs:
Buffer Overflows
Buffer overflows and some variations of it:
Active Directory
Kerberos, Microsoft AD hacking, moving around a simulated corporate network:
Writeups
Writeups from HTB and PGP make up the majority of this Gitbook.
HackTheBox
Proving Grounds Practice
Defence Evasion
Stuff about OS fundamentals, malware detection mechanisms and techniques to evade them I picked up for fun:
Adversary Emulation
Adversary emulation and red teaming knowledge:
Disclaimer
I do not claim to be the most correct, the best, or even remotely good at security. I'm just a guy that is really into security and wants to learn as much as possible.
I do not condone any illegal activity done using any methods in this notebook. All of the concepts listed here are for educational purposes only. What you decide to do with these skills is on you (basically, you can't sue me, not that I was using ground-breaking techniques anyway).
Last updated