Recent Posts
Reviving a Dead Spider-Man Game
In 2023 I set out to reverse engineer Spider-Man Unlimited - a mobile runner game that I loved as a kid, but which had been dead since servers shut down years ago. I had almost no experience with mobile security or reverse engineering when I started, but over months of digging I cracked the game’s encrypted save format, bypassed its file integrity checks, and even built a mod menu that lets players access content that had been lost to time. By the end, I’d not only brought a dead game back to life but figured out enough about its level format to enable custom mission creation.
OSEP Tips and Tricks
Finally got OSEP in the bag. This course was eye opening to me and helped me grow immensely as a professional. If you are just coming out of a successful OSCP exam, i recommend that you plan for and commit to take this exam as well, because it separates the men from the boys. Here’s a knowledge dump of everything that went through my head before and during this exam.
Hacking a Dead Spider-Man Mobile Game
I’ve never done any reverse engineering, mobile pentesting or game hacking. But this blogpost combines all three and tells the story of how I reverse engineered my childhood mobile game Spider-Man Unlimited, found a secret cheat menu and wrote a custom script to exploit it, as well as several other application controls, including the game asset compression.
CRTO-I Course and Exam Review
This week I passed the Certified Red Team Operator (CRTO) exam by RastaMouse from ZeroPointSecurity. Overall, this was a great follow-up to OSCP, because it took my Active Directory knowledge further and allowed me to practice with a real C2. It was well worth the money and every part of it was incredibly enjoyable. I highly recommend this course and exam to anyone interested in learning the fundamentals of red teaming and I’m publishing this to share my impressions and experiences with it.
OSCP Tips and Tricks
My OSCP journey is finally over and I have a lot of people to thank for inspiring me to finish it. Most of all I have Dylan to thank. I highly recommend you check out his blog and see his own journey. This article is intended to have all the information about OSCP that I wish I had when I first started studying for it. I’ve tried a large number of popular study materials and I review each one of them here, as well as share miscellaneous tips and opinions about the exam.