Completed Abusing HTTP Misconfigurations This module covers three common HTTP vulnerabilities: Web Cache Poisoning, Host Header Vulnerabilities, and Session Puzzling or Session Variable Overloading. These vulnerabilities can arise on the HTT...

I just completed module Abusing HTTP Misconfigurations in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Awarded the badge Binary Duo Explorer Awarded after two years of learning at HTB Academy

This is where the fun begins
#hackthebox #htbacademy #cybersecurity

academy.hackthebox.com/achievement/...

Completed Attacking Common Applications Penetration Testers can come across various applications, such as Content Management Systems, custom web applications, internal portals used by developers and sysadmins, and more. It's common to find ...

I just completed module Attacking Common Applications in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed API Attacks Web APIs serve as crucial connectors across diverse entities in the modern digital landscape. However, their extensive functionality also exposes them to a range of potential attacks. This module intr...

I just completed module API Attacks in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Web Requests This module introduces the topic of HTTP web requests and how different web applications utilize them to communicate with their backends.

I just completed module Web Requests in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Web Fuzzing In this module, we explore the essential techniques and tools for fuzzing web applications, an essential practice in cybersecurity for identifying hidden vulnerabilities and strengthening web applicat...

I just completed module Web Fuzzing in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Awarded the badge Cyber Rookie 365 Awarded after one year of learning at HTB Academy

I was just awarded the Cyber Rookie 365 badge on HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Fundamentals of AI This module provides a comprehensive guide to the theoretical foundations of Artificial Intelligence (AI). It covers various learning paradigms, including supervised, unsupervised, and reinforcement l...

I just completed module Fundamentals of AI in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Awarded the badge Ready to hunt bugs for fun and profit Bug Bounty Hunter path completed

I really enjoyed going through the Bug Bounty Hunter Path on HTB Academy. I learned some cool tricks and would recommend this to anyone interested in hacking web apps. academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed File Inclusion File Inclusion is a common web application vulnerability, which can be easily overlooked as part of a web application's functionality.

I just completed module File Inclusion in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Advanced XSS and CSRF Exploitation Modern web browsers and applications utilize a variety of security measures to protect against CSRF and XSS vulnerabilities, rendering their exploitation more difficult. This module focuses on exploit...

I just completed module Advanced XSS and CSRF Exploitation in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed HTTPs/TLS Attacks This module covers details on Transport Layer Security (TLS) and how it helps to make HTTP secure with the widely used HTTPS. That includes how TLS works, how TLS sessions are established, common TLS ...

I just completed module HTTPs/TLS Attacks in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Android Application Static Analysis This module provides a comprehensive introduction to the static analysis of Android applications—an essential skill for mobile security professionals, reverse engineers, and penetration testers. You’l...

Incredibly fun! I just completed module Android Application Static Analysis in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Android Fundamentals This module introduces fundamental concepts of the Android environment, focusing on the operating system, its security features, and the structure of applications. It provides students with details ab...

If you are interested in going into Android security this is a great starting course. Good information on Activities, Services, Intents, and more. I just completed module Android Fundamentals in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Prompt Injection Attacks This module comprehensively introduces one of the most prominent attacks on large language models (LLMs): Prompt Injection. It introduces prompt injection basics and covers detailed attack vectors bas...

This was so much fun! I just completed module Prompt Injection Attacks in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Injection Attacks This module covers three injection attacks: XPath injection, LDAP injection, and HTML injection in PDF generation libraries. While XPath and LDAP injection vulnerabilities can lead to authentication b...

I just completed module Injection Attacks in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Web Service & API Attacks Web services and APIs are frequently exposed to provide certain functionalities in a programmatic way between heterogeneous devices and software components. Both web services and APIs can assist in in...

I just completed module Web Service academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Session Security Maintaining and keeping track of a user's session is an integral part of web applications. It is an area that requires extensive testing to ensure it is set up robustly and securely. This module cover...

I just completed module Session Security in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Attacking GraphQL GraphQL is a query language for APIs as an alternative to REST APIs. Clients are able to request data through GraphQL queries. If improperly configured or implemented, common web security vulnerabilit...

I just completed module Attacking GraphQL in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

#HacktheBox Academy #htbacademy Reflected XSS
youtu.be/8V1mWt_QJfs
#hackthebox

Completed File Upload Attacks Arbitrary file uploads are among the most critical web vulnerabilities. These flaws enable attackers to upload malicious files, execute arbitrary commands on the back-end server, and even take control...

Just passed the File Upload Attacks module on HTB Academy. Hands down the toughest skills assessment on the Bug Bounty Hunter path so far.

academy.hackthebox.com/achievement/...

#hackthebox #htbacademy #cybersecurity #infosec #fileuploadattack #bugbounty #learningjourney #websecurity

Completed Command Injections Command injection vulnerabilities can be leveraged to compromise a hosting server and its entire network. This module will teach you how to identify and exploit command injection vulnerabilities and h...

Completed the Command Injections module on HTB Academy - halfway through the Bug Bounty Hunter path! 🚀

academy.hackthebox.com/achievement/...

#hackthebox #htbacademy #cybersecurity #infosec #commandinjection #bugbounty #learningjourney

Finally completed the Bug Bounty Hunter path on #htbacademy. Review coming soon then planning on taking the exam!

Completed SQLMap Essentials The SQLMap Essentials module will teach you the basics of using SQLMap to discover various types of SQL Injection vulnerabilities, all the way to the advanced enumeration of databases to retrieve all ...

Completed the SQLMap Essentials module on HTB Academy. The skills assessment was quite tough, but solid practice. Moving on.

academy.hackthebox.com/achievement/...

#hackthebox #htbacademy #cybersecurity #sqli #sqlmap #sqlinjection #bugbounty #learningjourney

Completed Intro to Academy Your first stop in Hack The Box Academy to become acquainted with the platform, its features, and its learning process.

I just completed module Intro to Academy in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy #cybersecurity

Completed Command Injections Command injection vulnerabilities can be leveraged to compromise a hosting server and its entire network. This module will teach you how to identify and exploit command injection vulnerabilities and h...

academy.hackthebox.com/achievement/...
Another module down making it 11/20 to getting ready for the #CBBH exam from #HTBAcademy

Completed SQL Injection Fundamentals Databases are an important part of web application infrastructure and SQL (Structured Query Language) to store, retrieve, and manipulate information stored in them. SQL injection is a code injection t...

I just completed module SQL Injection Fundamentals in HTB Academy!

My first HTBA module of medium difficulty 🚀

The best one so far 👍

academy.hackthebox.com/achievement/...

#hackthebox #htbacademy #cybersecurity #BugBounty #sqli #sqlinjection

Completed Cross-Site Scripting (XSS) Cross-Site Scripting (XSS) vulnerabilities are among the most common web application vulnerabilities. An XSS vulnerability may allow an attacker to execute arbitrary JavaScript code within the target'...

'> Completed the Cross-Site Scripting (XSS) module on Hack The Box Academy! 🎯 The phishing section was thrilling, but the skills assessment felt a bit too simple. Excited to dive into the next challenge! 💻

academy.hackthebox.com/achievement/...

#CyberSecurity #BugBounty #HackTheBox #HTBAcademy

Completed Modern Web Exploitation Techniques This module covers advanced web concepts and exploitation techniques, including performing DNS Rebinding to bypass faulty SSRF filters and the Same-Origin Policy, identifying and exploiting Second-Ord...

Fantastic web hacking course. Goes in great detail with WebSockets Attacks, Second-Order Attacks, and SSRF Filter Bypasses with DNS Rebinding.
I just completed module Modern Web Exploitation Techniques in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox #htbacademy

What’s been your biggest challenge lately? Let’s talk!

#BugBounty #CyberSec #Pentesting #LearningJourney #MentalBlocks #HTBAcademy #HackTheBox