Faudhzan
Rahman

Hi guys. Today I will do a simple writeup on the Hack The Box machine which is now retired named 'Expressway'. It is an Easy difficulty machine. I did this box during active period and since it is retired, I decided to put it here. 1) First step is to always nmap the box to search for open ports. the usual command that I use is nmap -sS -sV -sC -o <name of file>.txt <ip> Initial scan shows nothing. In this case, it is always good to check UDP ports as well. 2) Scanning for UDP ports Now we see some open port. From a quick Google search, it is found that port 500 is for IPSec. "IPsec is widely recognized as the principal technology for securing communications between networks (LAN-to-LAN) and from remote users to the network gateway (remote access), serving as the backbone for enterprise VPN solutions." Upon further research, I stumbled upon a useful blog on how to exploit IPSec. https://www.verylazytech.com/network-pentesting/ipsec-ike-vpn-port-500-udp  Th...

 Hi guys. It's been a while. Today I will do a simple writeup on the Hack The Box machine which is now retired named ' Dog '. It is an Easy difficulty machine. I did this box during active period and the material was stored for quite sometime in my laptop but didn't have the burning passion to put this into blog. Since I'm trying to lit my passion back up, might as well put this here before I proceed to port most of my stuff to Github. Also for context, I actually started HTB during that time you need to get those invites by hacking the website. It's actually super fun but I only did web challenge. Somehow got too busy with IRL jobs and left it to collect dust. Now I started doing the box for more knowledge and as preparation for OSCP exam. Now lets start. 1) First step is to always nmap the box to search for open ports. the usual command that I use is nmap -sS -sV -sC -o <name of file>.txt <ip> 2) After getting the results, we can see that the machi...

Hi guys, It's me again. Today I'm writing to share on a module which would help starts your journey in  Mobile Application Penetration Testing.  As of year 2025, most of the application would require at least Android 10 version. That means most of the old phone you have would be out from being converted into a testing device. The thing about older android version is that, it is much easier to install a user certificate. Easier way to install user certificate means easier way to setup your Android testing device. Starting from Android 11 , the setup become much harder. You can read further below. https://httptoolkit.com/blog/android-11-trust-ca-certificates/ Below blog is the way that I used (super tedious) before to install a user certificate as root level. https://medium.com/@lightbulbr/install-burp-ca-as-a-system-level-trusted-ca-android-11-rooted-physical-device-5542fe96345f For testing purpose, we would need Burpsuite certificate to be installed as root level. Lucky for ...

Hi guys. It's been a while since I last shared anything useful here. Nothing much lately. Only normal day to day testing.  Today I would like to share something which is quite useful for mobile testing for Android devices. If you are using a real device instead of an emulator, this would help you. https://github.com/Genymobile/scrcpy This application mirrors your android devices. It is super useful when you need to share screen or doing demonstration to your client or colleagues. Like if you stumble upon an error during testing and your client wanted you to demonstrate it to them, this is the best application you can use. Below is the example of screenshot of my OnePlus device. As of this year, I managed to root and push all necessary security related things into my OnePlus 6 (Android 11) . My previous testing device which is the Nexus 5x was dead/bricked after I tried to upgrade Magisk version. Rest in pepperoni my best device. *sobs For Android 11+ , its kind of hard to actually...