Posts
All the articles I've posted.
-
Okta Certified Professional — Lab: Okta-to-Okta Inbound SAML Federation
Hands-on lab notes from Okta Professional cert prep: build inbound SAML federation between two Okta orgs — one acting as IdP, the other as the inbound SP — with JIT provisioning and end-to-end System Log validation.
-
HTB Responder — LFI to NTLM Hash Capture
HackTheBox Responder exploits an LFI vulnerability to force the Windows server to authenticate to a rogue SMB server, capturing and cracking the administrator's NetNTLMv2 hash. The same pattern — user-controlled input redirecting an authenticated outbound connection — shows up in LLM agents leaking API tokens via prompt injection.
-
HTB Crocodile — The Credential Chain
HackTheBox Crocodile chains anonymous FTP credential disclosure into a hidden web admin login. Same structural failure shows up in agentic systems when leaked API keys legitimately authenticate into production tool-use endpoints.
-
HTB Sequel — Blank Root on MariaDB
HackTheBox Sequel exploits a MariaDB instance bound to the public interface with a blank-password root account. Same structural failure as agentic systems wired with admin-level API tokens that any caller can trigger.
-
Okta Certified Professional — Lab: Admin Roles and Delegated Administration
Hands-on lab notes from Okta Professional cert prep: assign a delegated admin role to a user, then move the role to a group so any member inherits limited admin rights — the realistic IAM pattern.
-
Okta Certified Professional — Lab: User Lifecycle States (Suspend, Password Reset, Deactivate)
Hands-on lab notes from Okta Professional cert prep: walk a user through Active → Suspended → Password Reset → Deactivated, observe authentication behavior at each step, and verify lifecycle events in the System Log.
-
Okta Certified Professional — Lab: Attribute Mapping and SAML Assertion Validation
Hands-on lab notes from Okta Professional cert prep: prove that Okta user profile attributes flow into a real SAML assertion, then run a break/fix drill to lock in the attribute mapping concept.
-
Okta Certified Professional — Lab: Real SAML Integration with IAMShowcase
Hands-on lab notes from Okta Professional cert prep: replace the fake SAML app with a real Service Provider (IAMShowcase), validate assertion delivery, and attach an App Authentication Policy.