Duy Tran

https://mrdarkroot.github.io/Duy TranMy personal notes on security research,hacking, pentesting,read code. 2026-06-19T01:56:45+00:00 MrDarkRoot https://mrdarkroot.github.io/ Jekyll © 2026 MrDarkRoot /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png CVE-2026-11571: Unauthenticated Sensitive Information Exposure in Everest Forms2026-06-19T14:30:00+00:00 2026-06-19T01:23:49+00:00 https://mrdarkroot.github.io/posts/cve-2026-11571-everest-forms-sensitive-information-exposure/ MrDarkRoot

Technical analysis of CVE-2026-11571, an unauthenticated sensitive information exposure vulnerability in Everest Forms caused by residual public CSV artifacts.

CVE-2026-11855: Unauthenticated Stored XSS in Simple Membership2026-06-15T14:00:00+00:00 2026-06-17T12:53:11+00:00 https://mrdarkroot.github.io/posts/cve-2026-11855-simple-membership-stored-xss/ MrDarkRoot

Technical analysis of CVE-2026-11855, an unauthenticated stored cross-site scripting vulnerability in the Simple Membership WordPress plugin.

Write-up: Cyber Kill Chain (TryHackMe) — biusa_mrdarkroot2025-10-24T17:00:00+00:00 2025-10-24T17:00:00+00:00 https://mrdarkroot.github.io/posts/cyber-kill-chain-writeup/ MrDarkRoot

Xin chào Jekyll 👋 Bài viết này tổng hợp toàn bộ nội dung từ phòng TryHackMe: Cyber Kill Chain, bao gồm giải thích chi tiết 7 giai đoạn của mô hình Lockheed Martin Cyber Kill Chain, cùng các ví dụ và biện pháp phòng chống tương ứng. Tác giả: biusa_mrdarkroot 🪶 Room Summary Phòng Cyber Kill Chain trên TryHackMe giúp người học hiểu rõ cách thức một cuộc tấn công mạng diễn ra theo từng giai đo...

Lxd Priv Esc Writeup2025-10-20T00:00:00+00:00 2026-06-16T12:49:10+00:00 https://mrdarkroot.github.io/posts/lxd-priv-esc-writeup/ MrDarkRoot

“Write-up: LXD Privilege Escalation — Theory, Risks & Defenses (Safe)” date: 2025-10-20 14:00:00 +0700 categories: [Security, Writeup] tags: [lxd, privilege-escalation, hardening, linux, defense] Hello Jekyll Author: biusa_mrdarkroot Short summary: This write-up explains the theory behind a known LXD-based privilege escalation class, describes risks and indicators of abuse, and — m...

Write-up:Hacking with powershell (TryHackMe)2025-10-17T13:00:00+00:00 2026-06-16T12:43:40+00:00 https://mrdarkroot.github.io/posts/powershell-writeup/ MrDarkRoot

Hello Jekyll This write-up summarizes the PowerShell room exercises and solutions. Author: biusa_mrdarkroot We explore PowerShell basics, Windows enumeration using PowerShell, and scripting challenges that help automate enumeration tasks. Objectives In this room we’ll cover: What PowerShell is and how it works Basic PowerShell cmdlets and patterns Windows enumeration using PowerSh...