SecJournal

What's this?

A compilation of security related things I do and write about!

This book will be updated as frequently as I can while juggling school work, and it is not meant to be a high-maintenance project.

What am I doing now? I have decided to spend a year on bug bounties to learn and see what I can learn and find.

Bug Bounties | SecJournal

Content

whoami

About Me | SecJournal

Blogs

Random things I find interesting enough to write about:

My BlogsSecJournal

Starting in InfoSec

My take on how to get into cybersecurity, about CTFs and hacking:

Getting Started | SecJournal

Web Vulnerabilities

Stuff about MVC, web vulnerabilities, Portswigger Web Security Academy Labs writeups with exploit scripts and disclosed bugs:

Web | SecJournal

Buffer Overflows

Buffer overflows and some variations of it:

Buffer OverflowsJournal

Active Directory

Kerberos, Microsoft AD hacking, moving around a simulated corporate network:

What is AD?Journal

Writeups

Writeups from HTB and PGP make up the majority of this Gitbook.

HackTheBox

HackTheBoxJournal

HTB Season 3 | SecJournal

HTB Season 2SecJournal

HTB Season 1SecJournal

Proving Grounds Practice

Proving Grounds PracticeJournal

Defence Evasion

Stuff about OS fundamentals, malware detection mechanisms and techniques to evade them I picked up for fun:

EvasionJournal

Adversary Emulation

Adversary emulation and red teaming knowledge:

https://rouvin.gitbook.io/ibreakstuff/adversary-emulationrouvin.gitbook.io

Disclaimer

I do not claim to be the most correct, the best, or even remotely good at security. I'm just a guy that is really into security and wants to learn as much as possible.

I do not condone any illegal activity done using any methods in this notebook. All of the concepts listed here are for educational purposes only. What you decide to do with these skills is on you (basically, you can't sue me, not that I was using ground-breaking techniques anyway).