Welcome to 0hmsec

I’m an Indian passionate about cybersecurity, especially penetration testing. I hold the OSCP+ certification and started this blog to share knowledge on cybersecurity topics, including CTF solutions and tips.

As someone interested in Japan, I’ll be writing posts in both English and Japanese. Please forgive any mistakes in my Japanese—I’d greatly appreciate any constructive feedback!

Thank you for visiting, and I hope you find the content helpful and engaging.

HTB - Servmon

Servmon, an easy difficulty Windows box, features a website that runs a vulnerable version of NVMS-1000. We will go on to exploit the Directory Traversal vulnerability present in the NVMS-1000 to g...

2025年Feb 6日 Hack The Box, Windows htb-servmon, hackthebox, windows, ctf, nmap, nvms-1000, nsclient, ftp, directory-traversal, crackmapexec, burpsuite, cve-2019-20085, ssh, port-forward, api, curl

HTB - Busqueda

Busqueda was an easy difficulty Linux box, which features a website that run Searchor, a python package used for web scraping and obtaining search query URLs. We will be exploiting an arbitrary cod...

2025年Feb 1日 Hack The Box, Linux nmap, cve-2023-43364, searchor-2.4.0, python, gitea, docker, mysql, htb-busqueda, hackthebox, linux, ctf, sudo

HTB - Active

Active was an easy to medium difficulty Windows machine, which featured two very prevalent techniques to gain privileges within an Active Directory environment. Eventhough the box was released in 2...

2025年Jan 1日 Hack The Box, Active Directory nmap, smb, smbclient, smbmap, gpp-password, gpp-decrypt, cve-2014-1812, kerberoast, hashcat, john, impacket-getuserspns, impacket-psexec, htb-active, hackthebox, active-directory, ctf

Welcome to 0hmsec

HTB - Servmon

HTB - Busqueda

HTB - Active

Trending Tags