Container Security Starts Before the Cloud
How I established a container image security baseline using distroless, Trivy, and GitHub Actions before touching any cloud infrastructure.
Recent Posts
AWS Lab Walkthrough: Troubleshooting IAM Access Issues
Learn how to troubleshoot IAM role assumption failures by aligning identity-based policies and trust relationships while maintaining least privilege.
Exploiting AlwaysInstallElevated for Windows Privilege Escalation
A walkthrough of exploiting the AlwaysInstallElevated misconfiguration on Windows to escalate from user to SYSTEM using a malicious MSI payload.
Devel Rooted: A Hack The Box Walkthrough
This post is a walkthrough of the ‘Devel’ retired machine from Hack The Box. I gain initial access through an exposed FTP and WebDAV setup, then escalate pri...
LazyAdmin TryHackMe Walkthrough
A complete walkthrough of the LazyAdmin room on TryHackMe, demonstrating enumeration, exploitation, and privilege escalation.
