Joe Thompson

SysReptor on Proxmox LXC

Deployed SysReptor in a Docker-inside-LXC container on Proxmox — lightweight dedicated reporting environment with persistent storage, accessible from anywhere on the lab network.

GPU-Accelerated Hash Cracking Station

Built a dedicated hash cracking VM with PCIe passthrough on Proxmox — IOMMU configuration, vfio-pci kernel binding, and RTX 2080 Ti passthrough to an isolated Ubuntu VM running Hashcat.

CPTS Pentest Methodology

Why the standard pentest lifecycle format didn't work for me during the CPTS exam — and what I built instead.

Archwarden — Security Portfolio Site

A self-built security portfolio site for writeups, methodology docs, and project work — designed to be accessible to people learning the field, not just to impress other hackers.

HTB: Forest

AS-REP Roasting recovers credentials for a service account with no Kerberos pre-authentication. Nested group membership through Account Operators gives WriteDACL over the domain, enabling a DCSync attack for full domain compromise.

HTB: Trick

DNS zone transfer exposes a hidden payroll application vulnerable to SQL injection. File read via SQLi reveals a second vhost with an LFI vulnerability — exploited through a filter bypass with PHP-FPM running as the target user, leaking an SSH key. A writable fail2ban action directory and a NOPASSWD sudo rule finish the job.

HTB: Jeeves

Unauthenticated Jenkins access leads to remote code execution. A KeePass vault stored on the host contains reusable credentials that enable pass-the-hash access to Administrator.