EBENEZER ADU-BITHERMAN

This is one of our difficult labs. Hive Gas Station. HiveFuel is a fictional nationwide fuel distribution and gas station management platform used by HIVE Energy Ltd. It manages fuel inventory, pump transactions, delivery scheduling, staff payroll, and customer loyalty accounts across multiple stations. Your Objectives Capture 9 flags hidden across the application. Flags are embedded in responses when specific of the 12 vulnerabilities are successfully exploited. Link: github.com/RedHatPenteste…

@1eniolaidowu Termux

@focus_furry What app?

Real security work doesn't require a 3-monitor setup—just the right skills and a terminal that fits in your pocket. ​So, next time you see someone intensely tapping on their phone, they might not be "chatting"—they might be "securing" your network.

@NoirBurner @elormkdaniel You can fire very tool from recon to foothold

@focus_furry @elormkdaniel Nmap nothing else nothing more

@AjekigbeMichael I fuzzed the web server's directories to uncover hidden paths, and robots.txt popped up in the results

@focus_furry How do you do robot.txt recon

Broke into a vulnerable e-commerce app from scratch — robots.txt recon → Gobuster enumeration → leaked config file → JWT forging → admin takeover via Burp Suite. This is what information disclosure + weak JWT secrets look like in the real world.

Got RCE via file upload — and the payload? Absolutely unhinged. 🤯 Walkthrough of how I chained it to dump all the flags in one shot. This one's for anyone learning web exploitation. 👇

@kwame_august Join hive

@RedHatPentester @focus_furry I’m currently in my third year learning cybersecurity in uni. I’ve got basic knowledge of Linux and its tools and can do basic cyber stuff. Can I get into hive consult to learn in detail please ? I tried to dm you . I can also buy materials if need be

Follow @focus_furry if you are into web security or Active Directory.

HiveAir International Airport has engaged you as a penetration tester to assess the security posture of its web application. Your objective is to conduct a full black-box penetration test with no prior knowledge or access provided about the application’s internal structure, technologies, or configurations. The environment contains a total of 10 vulnerabilities and 7 hidden flags to be identified during the assessment. Target Link: github.com/RedHatPenteste… Retweet and share the challenge⚡️

@bevmore_ Great 👍

@focus_furry Wow great….please can we become friends, I’d appreciate getting to know you please 🙏🏼 I’m on path to becoming a pentester myself and I’d love to have access to every help I can get

@Yellow__002 Thank you! I really appreciate

@focus_furry Nice work, Ebenezer👍