This is a small, beginner-friendly guide on how to get a free, but limited Nessus license - so newcomers are less limited by Nessus' 7 day trial period and have actually more time to get themselves familiar with the vulnerability scanner itself. The setup is done locally using Docker. Finally, we take a look at scan results - so you're ready for your new position or an upcoming interview.
Havoc C2 Intro & Inline C# Compilation within PowerShell
Blog post on how to quickly setup the Havoc C2 Framework & generate an agent payload. In order to compromise a fully patched Windows 11 client, I used the inline C# compilation capability of PowerShell. A video is linked at the end.
Post-Exploiting a VMware vCenter Server
Write-up on how to post exploit a vSphere Server, as my experience at the time with it was limited and I needed to find myself some good information - hence this blog post. At the end, I briefly describe how to extract cached AD credentials, as it was possible during the pentest as well.
Initial blog post