HackingHub

Execute the perfect Father's Day payload 👇

NahamSec made $30,000 USD with a single bug, and we turned it into a new practice hub. ⚔️ HospitalHub is a deliberately vulnerable staff portal. You sign in as a front-desk receptionist with zero patient privileges.  Your goal? Chain two Broken Access Control vulnerabilities to compromise the system. Try to solve it now 👇 hhub.io/HospitalHub  @NahamSec

@NahamSec Full video: youtube.com/watch?v=6v3B3F…

Want to HUNT for broken access control (BAC)? @NahamSec has some hacking advice for you 😎  Let’s hear it. 👇

Hack our FREE Hubs to learn more! 👇  hhub.io/eSLRYyLUEV

Why does swapping GET 🔁 POST/PUT/PATCH work?  Because it forces the server to walk code paths it never expected, some things to try: ➡️ Try GET on every POST/PUT/PATCH endpoint. ➡️ Try POST/PUT on GET endpoints, especially the one returning 403. ➡️ Add X-HTTP-Method-Override: DELETE (or PUT) on GET requests. ➡️ Append ?_method=DELETE (or PUT, PATCH) to any URL. ➡️ If CSRF token is present, remove it and flip POST→GET.

Someone: "I don't know where to learn to hack REAL targets." Me:

Content Discovery Explained app.hackinghub.io/hubs/nahamsec-…

Easily fuzz log files using a wordlist of dates 🗓️  Here’s how: 1️⃣ Use ffuf to find an active log directory 2️⃣ Grab a wordlist of dates 3️⃣ Run ffuf -w dates.txt -u /log/FUZZ.log -ac -mc 200 Want to try this technique out? Hack our Content Discovery Hub now! Link in comment 🔗

Proud to be sponsoring @p3rf3ctr00t again this year :)

Does this look robust? You think you can BYPASS it? 😎  Send your payloads. 🚀

Get the most out of your reverse engineering with GDB plugin, GEF (GDB Enhanced Features).  Run this command to install:  wget -O ~/.gdbinit-gef.py -q gef.blah.cat/py && echo source ~/.gdbinit-gef.py >> ~/.gdbinit

At first glance, this looks safe. What's the issue?

Try solving it now 👇 hhub.io/xsWufUe5hi

As they say, a good defender makes a better hacker. Void Step is a simple SOC challenge, but it will allow you to think in so many ways. You will understand what your Nmap scan looks like and how defenders catch on to the activity you make as a penetration tester.

Let's see if you can handle it 👇 hhub.io/3BbkEDk56a

How good is your Reverse Engineering?  Reindeer Route is a reverse engineering challenge from NahamCon 2025 Winter CTF.  As of posting this, only 140 hackers were able to solve this. Can you do it?

@NahamSec Link to full video: youtube.com/watch?v=kujCmX…

Report quality can make a huge difference.  @NahamSec   explains why report quality is important. He also gives some tips on how to write a well-written report.  Here’s a quick watch. 👇

Check them out. 👇 hhub.io/eSLRYyLUEV

Compare the responses and check if it's returning other users’ data.  Got it? Learn more techniques by hacking our FREE Hubs!

When you send two values for the same parameter, different server stacks resolve it differently. PHP/mod_wsgi takes the last value. Node/Express gives an array. Python/Zope returns all as a list.  This inconsistency can sometimes bypass authz checks.