Latest posts from Deep Hackinghttps://blog.deephacking.tech/en-USTue, 24 Mar 2026 12:52:52 GMT60https://blog.deephacking.tech/en/posts/ine-ecpptv3-review/https://blog.deephacking.tech/en/posts/ine-ecpptv3-review/A Comprehensive Review of INE eLearnSecurity’s eCPPTv3 Certification: Preparation, Exam, Tips, and Whether It’s Really Worth ItCertificationsMario Ramos Salsónhttps://blog.deephacking.tech/en/posts/ine-ecpptv3-cheatsheet/https://blog.deephacking.tech/en/posts/ine-ecpptv3-cheatsheet/A focused eCPPTv3 cheatsheet covering port enumeration, Active Directory attacks, hash dumping, and brute force techniquesCertificationsMario Ramos Salsónhttps://blog.deephacking.tech/en/posts/how-to-submit-an-article-to-deep-hacking/https://blog.deephacking.tech/en/posts/how-to-submit-an-article-to-deep-hacking/Learn how to propose and submit articles to Deep Hacking, from proposal approval to the Pull Request, with a Markdown format guide and author page instructions.MiscellaneousJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/how-when-and-to-whom-gpos-are-applied/https://blog.deephacking.tech/en/posts/how-when-and-to-whom-gpos-are-applied/Discover how Group Policy Objects (GPO) work in Active Directory: LSDOU processing order, inheritance, security filtering, preferences, and execution context.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/introduction-to-group-policy-objects-gpo-active-directory/https://blog.deephacking.tech/en/posts/introduction-to-group-policy-objects-gpo-active-directory/Discover what Group Policies are in Active Directory, how GPOs work, their components (GPC and GPT), and how they enable centralized management of user and computer configurations.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/deep-hacking-a-path-of-changes/https://blog.deephacking.tech/en/posts/deep-hacking-a-path-of-changes/Discover the evolution of Deep Hacking from its beginnings in 2021 to becoming an international community platform. Learn about the changes, improvements and the new version built with Astro.MiscellaneousJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/ine-emapt-review/https://blog.deephacking.tech/en/posts/ine-emapt-review/Complete review of INE Security's eMAPT certification: preparation, exam, tips, and whether it's really worth it for mobile pentesting.CertificationsDaniel Morenohttps://blog.deephacking.tech/en/posts/htb-cwes-review/https://blog.deephacking.tech/en/posts/htb-cwes-review/Complete review of HackTheBox's CWES certification: preparation, exam, comparison with eWPTX and BSCP, and tips to pass.CertificationsDaniel Morenohttps://blog.deephacking.tech/en/posts/htb-cpts-review/https://blog.deephacking.tech/en/posts/htb-cpts-review/Complete review of HackTheBox's CPTS certification: preparation, exam, comparison with OSCP, tips, and final thoughts.CertificationsOliver Felix Giovanardihttps://blog.deephacking.tech/en/posts/hacktricks-azrte-review/https://blog.deephacking.tech/en/posts/hacktricks-azrte-review/Complete review of HackTricks Training's AzRTE certification: course content, hands-on labs, exam, and my experience as a Certified Azure Red Team Expert 2025.CertificationsHector Ruiz Ruizhttps://blog.deephacking.tech/en/posts/oh-my-pentest-report-zsh-theme/https://blog.deephacking.tech/en/posts/oh-my-pentest-report-zsh-theme/Oh My Pentest Report is a custom theme for Oh My Zsh designed for pentesters: automatic command logging, dynamic IP display, date/time, and Git support.MiscellaneousJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/cai-ai-cybersecurity/https://blog.deephacking.tech/en/posts/cai-ai-cybersecurity/Discover CAI, the open-source AI framework for automated pentesting: real results on HTB, PortSwigger, and bug bounties, revolutionary offensive and defensive capabilities.MiscellaneousLuis Javier Navarretehttps://blog.deephacking.tech/en/posts/maldevacademy-offensive-phishing-operations-review/https://blog.deephacking.tech/en/posts/maldevacademy-offensive-phishing-operations-review/Review of the Offensive Phishing Operations course from MalDev Academy: secure phishing infrastructures, detection evasion, anti-bot techniques and AITM with Evilginx.CertificationsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/how-to-install-game-of-active-directory-goadv3-on-windows/https://blog.deephacking.tech/en/posts/how-to-install-game-of-active-directory-goadv3-on-windows/Complete guide to install GOADv3, the best Active Directory lab for practicing pentesting, using VMWare and Python on Windows.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/abusing-vulnerable-drivers-to-terminate-privileged-processes/https://blog.deephacking.tech/en/posts/abusing-vulnerable-drivers-to-terminate-privileged-processes/Detailed analysis of how to exploit vulnerabilities in Windows drivers to terminate privileged processes and evade EDR and AV solutions through the abuse of the TrueSight.sys driver.WindowsJulio Ángel Ferrari Medinahttps://blog.deephacking.tech/en/posts/how-to-install-magisk-on-emulated-devices-with-android-studio/https://blog.deephacking.tech/en/posts/how-to-install-magisk-on-emulated-devices-with-android-studio/Learn how to install Magisk on Android Studio emulated devices to create a complete mobile pentesting environment with root access, Burp Suite certificates, and Frida through Magisk modules.Mobile PentestingPablo Castillohttps://blog.deephacking.tech/en/posts/active-directory-groups/https://blog.deephacking.tech/en/posts/active-directory-groups/Discover the different types of groups in Active Directory, their scopes, differences with OUs, and the most important groups for domain security.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/ssh-agent-hijacking/https://blog.deephacking.tech/en/posts/ssh-agent-hijacking/Learn how SSH Agent Hijacking works, techniques to abuse active SSH sessions, privilege escalation, and how to compromise remote servers through SSH sockets.LinuxJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/wifichallenge-cwp-review/https://blog.deephacking.tech/en/posts/wifichallenge-cwp-review/Complete review of the CWP (Certified WiFiChallenge Professional) certification, the best WiFi hacking certification on the market. Analysis of the course, lab, exam, and comparison with OSWP.CertificationsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/security-identifiers/https://blog.deephacking.tech/en/posts/security-identifiers/Discover what Security Identifiers (SIDs) are in Windows, their structure, types, and how they are used in the security system to identify users, groups, and sessions.Active DirectoryWindowsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/kali-linux-on-windows-without-installation-with-qemu/https://blog.deephacking.tech/en/posts/kali-linux-on-windows-without-installation-with-qemu/Learn how to run Kali Linux on Windows without needing administrator privileges or installation using Qemu as a portable emulator.LinuxWindowsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/physical-device-configuration-android-pentesting/https://blog.deephacking.tech/en/posts/physical-device-configuration-android-pentesting/Learn how to configure a physical Android device for pentesting through rooting with Magisk, including bootloader unlocking, custom recovery installation, and Burp Suite certificate configuration.Mobile PentestingPablo Castillohttps://blog.deephacking.tech/en/posts/anatomy-of-the-portable-executable-format/https://blog.deephacking.tech/en/posts/anatomy-of-the-portable-executable-format/Discover the internal structure of the Windows PE format: DOS headers, NT Headers, sections and data directories for malware development and analysis.WindowsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/introduction-to-browser-exploitation/https://blog.deephacking.tech/en/posts/introduction-to-browser-exploitation/Introduction to web browser exploitation: how JavaScript engines work, Chrome's security architecture, and common vulnerabilities.WebIván Cabrera Fresnohttps://blog.deephacking.tech/en/posts/directory-and-schema-of-active-directory/https://blog.deephacking.tech/en/posts/directory-and-schema-of-active-directory/Explore the internal structure of Active Directory: NTDS database, naming contexts, schema, classes, attributes, and the Global Catalog to understand how information is organized and managed in AD.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/maldevacademy-malware-development-course-review/https://blog.deephacking.tech/en/posts/maldevacademy-malware-development-course-review/Comprehensive analysis of MalDev Academy, the platform specialized in malware development with over 140 modules, code database, and private Discord to learn red teaming techniques and AV/EDR evasion.CertificationsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/zeropointsecurity-crto-review/https://blog.deephacking.tech/en/posts/zeropointsecurity-crto-review/Complete review of the CRTO (Certified Red Team Operator) certification, including syllabus, practical labs, exam tips, and recommendations to pass.CertificationsVictor Capatinahttps://blog.deephacking.tech/en/posts/reversing-an-asm-x86-32-function/https://blog.deephacking.tech/en/posts/reversing-an-asm-x86-32-function/Static and dynamic analysis of an x86-32 assembly function. Learn reversing through a practical exercise from the Practical Reverse Engineering book.Low LevelAdrià Pérez Montorohttps://blog.deephacking.tech/en/posts/introduction-to-rfid-technology/https://blog.deephacking.tech/en/posts/introduction-to-rfid-technology/Discover what RFID technology is, how low and high frequency tags work, their applications in access control, contactless payments, and how to identify the frequency of RFID tags.MiscellaneousAntonio Sánchez (sh0x)https://blog.deephacking.tech/en/posts/trusts-in-active-directory/https://blog.deephacking.tech/en/posts/trusts-in-active-directory/Complete guide on trusts in Active Directory: trust types, direction, transitivity, Trust Domain Objects (TDO) and how to enumerate trust relationships with PowerView.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/introduction-to-active-directory/https://blog.deephacking.tech/en/posts/introduction-to-active-directory/Learn the fundamental concepts of Active Directory, from its origins to its hierarchical structure with domains, forests, group policies, and domain controllers.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/offsec-osed-review/https://blog.deephacking.tech/en/posts/offsec-osed-review/Personal experience and complete guide on Offensive Security's OSED certification: prerequisites, course tips, labs, and strategies to pass the exam.CertificationsAdrián Díaz Aguilarhttps://blog.deephacking.tech/en/posts/kali-linux-on-windows-through-wsl2/https://blog.deephacking.tech/en/posts/kali-linux-on-windows-through-wsl2/Learn how to install Kali Linux with a graphical interface on Windows using WSL2. Complete guide with three display modes and environment configuration.WindowsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/constrained-delegation-y-resource-based-constrained-delegation/https://blog.deephacking.tech/en/posts/constrained-delegation-y-resource-based-constrained-delegation/Complete guide on Constrained Delegation and Resource-Based Constrained Delegation (RBCD) in Kerberos, including S4U2Proxy and S4U2Self extensions, enumeration, and exploitation techniques.Active DirectoryJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/hacktricks-arte-review/https://blog.deephacking.tech/en/posts/hacktricks-arte-review/Complete review of HackTricks Training's ARTE certification: AWS Red Team course, cloud labs, hands-on exam, and my experience as an AWS Red Team Expert.CertificationsAxel Losantos Lizasohttps://blog.deephacking.tech/en/posts/offsec-oswp-review/https://blog.deephacking.tech/en/posts/offsec-oswp-review/Complete review of the OSWP (OffSec Wireless Professional) certification with tips, preparation advice and personal experience from the WiFi pentesting exam.CertificationsAdrià Pérez Montorohttps://blog.deephacking.tech/en/posts/zeropointsecurity-crtl-review/https://blog.deephacking.tech/en/posts/zeropointsecurity-crtl-review/Complete and honest review of the CRTO II / CRTL (Red Team Leader) certification, including EDR evasion techniques, exam tips, and additional resources.CertificationsVictor Capatinahttps://blog.deephacking.tech/en/posts/offsec-osep-review/https://blog.deephacking.tech/en/posts/offsec-osep-review/Complete and honest review of the OSEP certification (OffSec Experienced Penetration Tester), including tips, exam advice, and useful tools to pass.CertificationsVictor Capatinahttps://blog.deephacking.tech/en/posts/from-old-postcard-to-exact-current-location/https://blog.deephacking.tech/en/posts/from-old-postcard-to-exact-current-location/OSINT investigation to determine the exact location of an old Italian postcard using image restoration techniques, reverse search, and geographic analysis.OSINTJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/ssl-pinning-bypass-android-applications/https://blog.deephacking.tech/en/posts/ssl-pinning-bypass-android-applications/Learn how to perform dynamic analysis of Android applications by bypassing SSL Pinning using Frida and Objection to intercept network traffic.Mobile PentestingPablo Castillohttps://blog.deephacking.tech/en/posts/unicode-characters-in-burp-suite/https://blog.deephacking.tech/en/posts/unicode-characters-in-burp-suite/Discover how to use Unicode characters in Burp Suite to bypass web application filters and improve your pentesting techniques.WebEric Labradorhttps://blog.deephacking.tech/en/posts/alteredsecurity-cartp-review/https://blog.deephacking.tech/en/posts/alteredsecurity-cartp-review/Personal review and experience with the CARTP certification from Altered Security, including details about the exam, lab, and advice for future candidates.CertificationsAxel Losantos Lizasohttps://blog.deephacking.tech/en/posts/portswigger-bscp-review/https://blog.deephacking.tech/en/posts/portswigger-bscp-review/Complete review of the BSCP (Burp Suite Certified Practitioner) certification from PortSwigger: exam experience, preparation with Web Security Academy, tips and resources to pass.Certifications{REDACTED}https://blog.deephacking.tech/en/posts/jwt-authentication-bypass-via-weak-signing-key/https://blog.deephacking.tech/en/posts/jwt-authentication-bypass-via-weak-signing-key/Learn to exploit JWT vulnerabilities with weak signing keys in this PortSwigger lab write-up on JWT authentication.PortSwigger LabsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/kali-linux-on-docker/https://blog.deephacking.tech/en/posts/kali-linux-on-docker/Complete guide to install and manage Kali Linux on Docker. Learn to configure the environment, tunnel traffic through Burp Suite, and manage containers.LinuxWindowsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/how-the-dns-protocol-works/https://blog.deephacking.tech/en/posts/how-the-dns-protocol-works/Learn how the DNS protocol works, the types of servers involved in domain resolution, and the most common DNS records used on the internet.OSINTJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/jwt-authentication-bypass-via-flawed-signature-verification/https://blog.deephacking.tech/en/posts/jwt-authentication-bypass-via-flawed-signature-verification/Walkthrough of the PortSwigger lab on JWT authentication bypass through flawed signature verification, exploring how to exploit servers that accept unsigned tokens with the 'none' algorithm.PortSwigger LabsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/jwt-authentication-bypass-via-unverified-signature/https://blog.deephacking.tech/en/posts/jwt-authentication-bypass-via-unverified-signature/Walkthrough of the PortSwigger lab on JWT authentication bypass through unverified signatures, explaining how to exploit this vulnerability when the server doesn't properly validate token signatures.PortSwigger LabsJuan Antonio González Menahttps://blog.deephacking.tech/en/posts/how-to-patch-amsiscanbuffer-to-evade-amsi/https://blog.deephacking.tech/en/posts/how-to-patch-amsiscanbuffer-to-evade-amsi/Learn how to evade AMSI on Windows by patching the AmsiScanBuffer function, including the use of pinvoke to call native APIs and obfuscation techniques.WindowsMiguel Ángel Cortéshttps://blog.deephacking.tech/en/posts/how-to-tunnel-and-intercept-android-device-traffic/https://blog.deephacking.tech/en/posts/how-to-tunnel-and-intercept-android-device-traffic/Learn how to configure Burp Suite to intercept network traffic from an Android device by installing system certificates and configuring the HTTP proxy.Mobile PentestingPablo Castillo