Welcome to my Blog

Things about my experience in Cybersecurity.

Upgopher: Un Análisis Rápido

Este artículo ofrece un análisis rápido de Upgopher, un servidor web simple que permite la subida y administración de archivos, y que está diseñado para ser ejecutado tanto en entornos locales como remotos, maximizando la portabilidad y minimizando los problemas de compatibilidad.

Setting Up MultiEvilnoVNC with HTTPS

This guide details the configuration of a MultiEvilNoVNC environment using HTTPS, including Docker container setup, Nginx configuration, SSL certificate acquisition with Certbot, and startup script modifications.

Password Security Policies (PSO) in Active Directory (AD)

Password Security Policies (PSO) in Active Directory (AD) are a critical component in a corporate networks security infrastructure...

How to solve monkey_vuln_machine

Learn how to solve a CTF machine in this post. Discover how to perform a login bypass, decrypt hashes, escalate privileges, and more.

<POC/>

POC log4j exploit.

Post in which we exploit the log4j vuln (CVE-2021-44228)

A new docker for phishing (PoFish)

Lately I have been making several phishing attempts. For one thing or another I have had to perform the same configuration of the same applications in different environments. For this reason I have created a DockerFile which once built, can be deployed with different options to perform a phishing exercise.

My experience with OSCP

Post in which I talk about my experience in the adventure of becoming OSCP certified.