<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>0xM4IX</title><link>https://0xm4ix.com/</link><description>Recent content on 0xM4IX</description><image><title>0xM4IX</title><url>https://0xm4ix.com/images/social-image.png</url><link>https://0xm4ix.com/images/social-image.png</link></image><generator>Hugo</generator><language>en-us</language><atom:link href="https://0xm4ix.com/index.xml" rel="self" type="application/rss+xml"/><item><title>About Me</title><link>https://0xm4ix.com/about/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/about/</guid><description>&lt;blockquote>
&lt;p>&lt;strong>Offensive Security • Penetration Testing • Vulnerability Research&lt;/strong>&lt;/p>&lt;/blockquote>
&lt;div class="custom-note">
&lt;p>I&amp;rsquo;m &lt;strong>0xM4IX&lt;/strong>, a penetration tester from Uzbekistan and a former software engineer with a primary focus on offensive security, Active Directory, web application security, and internal network assessments.&lt;/p>
&lt;p>My background in software engineering has given me a strong understanding of how applications are built, while my current focus is on identifying, analyzing, and exploiting security weaknesses through hands-on practice and continuous research.&lt;/p></description></item><item><title>Hack The Box - Active - Writeup</title><link>https://0xm4ix.com/writeups/active/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/writeups/active/</guid><description>Abusing Group Policy Preferences credentials and Kerberoasting to compromise an Active Directory domain on Hack The Box Active.</description></item><item><title>Hack The Box - Blackfield - Writeup</title><link>https://0xm4ix.com/writeups/blackfield/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/writeups/blackfield/</guid><description>Anonymous SMB enumeration, AS-REP Roasting, ForceChangePassword abuse, LSASS credential extraction, Backup Operators abuse, and privilege escalation on Hack The Box Blackfield.</description></item><item><title>Hack The Box - Forest - Writeup</title><link>https://0xm4ix.com/writeups/forest/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/writeups/forest/</guid><description>Anonymous RPC enumeration, AS-REP Roasting, BloodHound privilege analysis, ACL abuse, and DCSync exploitation on HackTheBox Forest.</description></item><item><title>Hack The Box - Lame - Writeup</title><link>https://0xm4ix.com/writeups/lame/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/writeups/lame/</guid><description>Linux service enumeration and exploitation of vulnerable Samba services on Hack The Box Lame.</description></item><item><title>Hack The Box - Querier - Writeup</title><link>https://0xm4ix.com/writeups/querier/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/writeups/querier/</guid><description>Abusing exposed SMB shares, MSSQL credentials, NTLM capture, and credential discovery to compromise Querier.</description></item><item><title>Hack The Box - Resolute - Writeup</title><link>https://0xm4ix.com/writeups/resolute/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/writeups/resolute/</guid><description>Active Directory enumeration, password spraying, WinRM access, PowerShell transcript credential discovery, and DnsAdmins privilege escalation on Hack The Box Resolute.</description></item><item><title>My CPTS Exam Experience (2 Attempts)</title><link>https://0xm4ix.com/posts/cpts-exam-experience/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://0xm4ix.com/posts/cpts-exam-experience/</guid><description>My journey through the Certified Penetration Testing Specialist (CPTS) exam, including lessons learned from two attempts and what ultimately helped me succeed.</description></item></channel></rss>