https://saereya.github.io/Security and Infrastructure related topics either from personal experience or professional. 2025-12-29T17:43:02+00:00 Tom https://saereya.github.io/ Jekyll © 2025 Tom /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2025-12-27T20:52:00+00:00 2025-12-29T17:42:38+00:00 https://saereya.github.io/posts/mongobleed-cve-2025-14847/ Tom

The Vulnerability As an early Christmas present a new vulnerability has been found in MongoDB. The vuln takes advantage of mismatched length fields in Zlib. Simply the server trusts the uncompressedSize claim sent by the client and instead of sending just the uncompressed data buffer back it sends the entire allocated buffer. This is very similiar to the infamous Heartbleed vulnerability in SSL...

2025-12-23T12:11:00+00:00 2025-12-23T12:11:00+00:00 https://saereya.github.io/posts/tryhackme-hammer/ Tom

Hammer is the final room in the Authentication path for Web Application Pentesting. Recon We are provided very little info so first lets do a nmap scan: Starting Nmap 7.95 ( https://nmap.org ) at 2025-12-23 07:13 EST Nmap scan report for 10.81.133.125 Host is up (0.022s latency). Not shown: 65533 closed tcp ports (reset) PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 8.2p1 Ubun...

2025-12-22T16:19:00+00:00 2025-12-22T18:38:02+00:00 https://saereya.github.io/posts/advent-of-cyber-day-21-malhare-exe/ Tom

HTA App - survey.hta Starting off this room we have a single task file survey.hta. This is a HTA application disguised as a Festive Elf Survey. <hta:application id="APP123080" applicationname="Festival Elf Survey" ... Taking an initial look we can see functions such as decodeBase64 RSBinaryToString getQuestions getQuestions() It looks like getQuestions() is a sneaky function tha...