m3rl1n13's Certificates
17 / 67 earnedHTTP exposure, directory traversal, XSS, SSTI, and XXE β the OWASP core from first principles.
DNS zone transfers, SNMP community strings, rsync exposure, NFS misconfig. The network as attack surface.
LDAP injection, JWT algorithm confusion, OAuth flows β break the authentication layer end to end.
MySQL injection, Redis command abuse, SMB shares. Exfiltrate, pivot, and escalate through the data layer.
Stack-based buffer overflows and ret2libc chains. Low-level exploitation is a rare and respected skillset.
Two interconnected Windows domains β CorpNet and MegaCorp. Enumerate shares, pivot users, own the DCs.
Three-machine AD network β DC, database server, workstation. Full domain compromise from zero to domain admin.
Collect all five fragments scattered across live labs. The full infection story.
SSRF, prototype pollution, race conditions, log poisoning β the tricky second tier of web exploitation.
Own any 20 distinct machines. Breadth over depth β prove you can operate across the full attack surface.
Own any 20 distinct machines.
Every active machine owned. The completionist crown β given to those who leave nothing standing.
Own every active machine on the platform.