Writeups, tools, and notes from HackTheBox machines and cybersecurity challenges.

Password spraying toolkit for testing authentication endpoints:

• atomizer.py — Main spraying engine
• aerosol.py — Auxiliary spraying functions
• core/ — Sprayer implementations and webhook integrations

WordPress exploitation techniques:

• reverse.php — Reverse shell payload
• bind.php — Bind shell payload
• cmd.php — Command execution shell
• hello.php — Plugin-based execution

• Active Directory password attacks
• Web application exploitation
• WordPress security testing
• Authentication bypass techniques

Disclaimer: All tools and techniques were used exclusively on authorized platforms (HackTheBox, TryHackMe) for educational purposes.

2020-2021