This repository contains walkthroughs and exploitation notes from vulnerable labs.
Focus: practical penetration testing skills, professional reporting, and remediation guidance.
- TryHackMe: OWASP Top 10 (Broken Access Control, Injection, Authentication Failures, Security Misconfiguration), Juice Shop, Pickle Rick
- HackTheBox: Beginner and Intermediate machines
- Custom-built vulnerable VMs
Each write-up includes:
- Summary of the Target – short description of the lab and objectives
- Exploitation Steps – detailed walkthrough of tools, commands, and techniques used
- Findings with Screenshots – proof of vulnerabilities identified
- Remediation Advice – practical guidance to fix and mitigate the issue
- OWASP Top 10 - Broken Access Control
- OWASP Top 10 - Injection
- OWASP Top 10 - Authentication Failures
- OWASP Top 10 - Security Misconfiguration
This repository serves as a portfolio of penetration testing labs, showcasing skills in:
- Vulnerability identification
- Exploitation methodology
- Documentation and reporting
- Secure coding and remediation practices
This repo is intended for learning, practice, and portfolio showcase in penetration testing.