tutorials · 3 min
Introduction to mining, part 2: stack 3-4 (Protostar)
Continuation of Protostar (Stack 3–4): overwriting function pointers and EIP using classic overflows with gets(), offsets, and little-endian.
· Manuel López Pérez
tutorials
tutorials · 6 min
Introduction to Exploiting Part 1 - Stack 0-2 (Protostar)
Practical introduction to stack buffer overflow with Protostar's Stack 0–2 challenges: offsets, little-endian, and using arguments/environment variables to modify memory.
· Manuel López Pérez
tutorials · 2 min
Malicious PDF in Windows 10 with Embedded SettingContent-ms
Example of phishing in Windows 10 with a PDF and an embedded SettingContent-ms file, automatically executed by JavaScript when the document is opened.
· Pablo Plaza Martínez
tutorials · 3 min
Stealing Windows NTLM Hashes with a Malicious PDF
Practical guide to generating a malicious PDF that, when opened in Windows, forces NTLM authentication and captures the NET-NTLMv2 hash. Includes generation with modern tools, cracking with hashcat, and use of psexec. Updated with best practices and current alternatives.
· Pablo Plaza Martínez
tutorials · 1 min
Stealing Credentials with a FakeAP
Practical guide to creating a fake WiFi access point (Evil Twin / FakeAP) with Wifiphisher. We clone a hotel captive portal, deauthenticate users, and steal credentials. Updated with modern tools and ethical recommendations.
· Pablo Plaza Martínez