Cyberah

Cyberahhttps://cyberah-blog.pages.dev/en/Recent content on CyberahHugoen2026 CyberahThu, 23 Apr 2026 00:00:00 +0000How I Found a Remote Code Execution Vulnerability in the Database Restore Function - CVE-2026-40484https://cyberah-blog.pages.dev/en/cve/cve-2026-40484/Tue, 21 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/cve/cve-2026-40484/A deep technical analysis of how I found this vulnerability from scratch all the way to receiving the CVE ID.What is Active Directory?https://cyberah-blog.pages.dev/en/notes/active-directory/what-is-ad/Mon, 20 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/notes/active-directory/what-is-ad/Introduction to Active Directory structure and authentication protocolsAttack Active Directoryhttps://cyberah-blog.pages.dev/en/notes/active-directory/ad-attacks/Mon, 20 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/notes/active-directory/ad-attacks/The most common Active Directory attacks used in red team engagementsLateral Movement in AD Networkshttps://cyberah-blog.pages.dev/en/notes/active-directory/lateral-movement/Mon, 20 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/notes/active-directory/lateral-movement/Lateral movement techniques for pivoting between machines in Active Directory environmentsBloodHound — Mapping Attack Pathshttps://cyberah-blog.pages.dev/en/notes/active-directory/bloodhound/Mon, 20 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/notes/active-directory/bloodhound/Using BloodHound to discover shortest attack paths to Domain AdminBlog Statisticshttps://cyberah-blog.pages.dev/en/stats/Thu, 23 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/stats/A comprehensive overview of Cyberah's content — articles, activity, and most-readHall of Famehttps://cyberah-blog.pages.dev/en/hall-of-fame/Thu, 23 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/hall-of-fame/Contributors to Cyberah — ranked by number of articles publishedAbout Mehttps://cyberah-blog.pages.dev/en/about/Tue, 21 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/about/Ayham Othman — Cyberah | Penetration Tester, Security Researcher, Trainer & SpeakerCVE Analysis — Log4Shell Pattern: A JNDI Injection Deep Divehttps://cyberah-blog.pages.dev/en/cve/cve-2024-log4shell-analysis/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/cve/cve-2024-log4shell-analysis/Deep technical analysis of JNDI Injection vulnerability patterns — discovery, exploitation, and defensePrivacy Policyhttps://cyberah-blog.pages.dev/en/privacy/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/privacy/Cyberah blog privacy policyPython for Hackers — Basics to Real Toolshttps://cyberah-blog.pages.dev/en/programming/python-for-hackers/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/programming/python-for-hackers/A practical guide to learning Python from a cybersecurity perspective — writing recon tools, scanners, and exploitation scriptsTerms of Usehttps://cyberah-blog.pages.dev/en/terms/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/terms/Cyberah blog terms of useThe Complete Nmap Guide — Beginner to Prohttps://cyberah-blog.pages.dev/en/tools/nmap-complete-guide/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/tools/nmap-complete-guide/Everything you need to know about Nmap: basic scanning, NSE scripts, firewall evasion, and advanced techniquesTryHackMe — Startup | Full Writeuphttps://cyberah-blog.pages.dev/en/writeups/thm/thm-startup/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/writeups/thm/thm-startup/Detailed walkthrough for TryHackMe Startup room — FTP Anonymous, RCE via File Upload, Privilege Escalation via CronWeb Penetration Testing Methodology — Zero to Pwnedhttps://cyberah-blog.pages.dev/en/notes/methodology-web-pentest/Sun, 19 Apr 2026 00:00:00 +0000https://cyberah-blog.pages.dev/en/notes/methodology-web-pentest/A comprehensive methodological guide for web application penetration testing, from reconnaissance to final report