Cyber Security & Tech Articles

Navigating Your Next Move After BTL1: The Blue Team Certification Guide
Navigating Your Next Move After BTL1: The Blue Team Certification Guide
You have accomplished something truly challenging by passing the BTL1, leveraging it to land your SOC Level 1 role, and now finding yourself in the enviable position of having a... Read more...
How to Pass the OSCP on Your First Attempt Coming From a SOC Background (A Complete Guide)
How to Pass the OSCP on Your First Attempt Coming From a SOC Background (A Complete Guide)
What the OSCP Actually Tests (And Why That Changes Everything) Before discussing preparation, you need to recalibrate your mental model of what the OSCP is. OSCP is much more CTF-like... Read more...
The Unofficial OSED Study Notes
The Unofficial OSED Study Notes
These OSED Study Notes are not another recycled penetration testing summary pretending that exploit development is just “find overflow → run exploit → get shell.” The material goes much deeper... Read more...
CVE-2026-43284 Dirty Frag Explained
CVE-2026-43284 Dirty Frag Explained
SYSTEM://Linux CVE Dirty Frag Explained MNOTES//SEC CYBER · LABS · INTEL SYSTEM ONLINE Before you touch a single command in this room, there's one mental model you need to lock... Read more...
The Unofficial BTL2 Study Notes
The Unofficial BTL2 Study Notes
BTL2 Study Notes are are built for analysts already operating inside SOC environments who need to move from passive log review into active threat detection, investigation, and response. The core... Read more...
The Ultimate COMPTIA SEC AI+ Study Notes
The Ultimate COMPTIA SEC AI+ Study Notes
These COMPTIA SEC AI+ Study Notes are the unofficial companion, meticulously distilling 86 pages of practitioner-grade AI risk management, operational defense, and governance into a high-impact field manual. Unlike generic... Read more...
THM Wazuh: CVE-2026-25769 Walkthrough
THM Wazuh: CVE-2026-25769 Walkthrough
A critical flaw (CVE-2026-25769, CVSS 9.1) was found in Wazuh cluster communications, specifically in how the master node processes JSON messages from worker nodes. The master blindly trusts worker input... Read more...
THM Spring AI: CVE-2026-22738 Walkthrough
THM Spring AI: CVE-2026-22738 Walkthrough
This scenario revolves around a critical remote code execution flaw in Spring AI, specifically inside the Simple Vector Store component. The vulnerability is dangerous because it allows unauthenticated attackers to... Read more...
HackTheBox (HTB) Snapped Writeup
HackTheBox (HTB) Snapped Writeup
HackTheBox Snapped is built around two very modern failure patterns: exposed encrypted backups that aren’t really protected, and a race-condition privilege escalation tied to snapd. The entire compromise flows from weak... Read more...
HackTheBox DarkZero Writeup
HackTheBox DarkZero Writeup
HTB DarkZero is a two-forest assume-breach Active Directory lab. The attack chain is simply: Start with low-privileged domain creds (john.w) in darkzero.htb Enumerate MSSQL on DC01 → discover a linked server to DC02... Read more...
THM SAL2 vs HTB CDSA vs BTL2 : The Real Comparison
THM SAL2 vs HTB CDSA vs BTL2 : The Real Comparison
SYSTEM://THM SAL2 vs BTL2 vs HTB CDSA MNOTES//SEC CYBER · LABS · INTEL SYSTEM ONLINE The blue team certification space just got a new entrant, and predictably, the marketing wars... Read more...
HackTheBox (HTB) Browsed Writeup
HackTheBox (HTB) Browsed Writeup
HTB Browsed Description HTB Broswed is a medium-difficulty Linux machine centred around abusing browser extension functionality to access internal services. By uploading a malicious Chrome extension, we intercept a developer’s... Read more...