Latest

Recent Posts

Published on
February 6, 2026
HTB - Facts (easy)
machine linux LFI path-traversal camaleon-cms ssh2john facter
Discovered a running webpage that allowed for registration. After logging in, it was revealed an outdated version of Camaleon CMS instance which was vulnerable to CVE-2024-46987 (Authenticated Arbitrary File Read). Leveraging that vulnerability to grab SSH keys on getting initial access. Finally, gained root access by exploiting a sudo misconfiguration using the facter command/binary.
Read more →
Published on
February 4, 2026
CWL - IAM Access Compass
cyberwarfarelabs cloud GCP gcloud-cli
The challenge provides JSON credentials that can be used to authenticate and enumerate GCP resources which includes IAM roles and service account emails that has admin permissions
Read more →
Published on
February 1, 2026
CWL - Lamba Escalation
cyberwarfarelabs cloud AWS AWSCLI Lambda
The challenge provides Access Keys that are used to authenticate to the AWS instance and enumerate AWS IAM resources & Lambda function permissions. Leveraging those permissions, we can invoke a Lambda function to retrieve the hidden flag
Read more →
Published on
January 31, 2026
CWL - Uncovering the App Registration
cyberwarfarelabs cloud Azure MS-Graph
The challenge provides Client Credentials that are used to identify the Tenant ID, then using that to request an Access Token that we can use to authenticate and enumerate the API Permission assigned to the Application
Read more →
Published on
January 29, 2026
CWL - testIamPermissions() Probe
cyberwarfarelabs cloud GCP testIamPermissions
The challenge provides JSON credentials that can be used to brute-force IAM permissions to enumerate permissions on a service account
Read more →

All Posts →

Subscribe to the newsletter

Latest

HTB - Facts (easy)

CWL - IAM Access Compass

CWL - Lamba Escalation

CWL - Uncovering the App Registration

CWL - testIamPermissions() Probe