<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Detection-Engineering - Tag - Forensic wheels</title><link>https://polymathmonkey.github.io/weblog/tags/detection-engineering/index.html</link><description/><generator>Hugo</generator><language>en-us</language><lastBuildDate>Thu, 18 Jun 2026 09:28:29 +0200</lastBuildDate><atom:link href="https://polymathmonkey.github.io/weblog/tags/detection-engineering/index.xml" rel="self" type="application/rss+xml"/><item><title>HTB: Silentium</title><link>https://polymathmonkey.github.io/weblog/writeups/htbsilentium/index.html</link><pubDate>Sun, 14 Jun 2026 09:26:00 +0200</pubDate><guid>https://polymathmonkey.github.io/weblog/writeups/htbsilentium/index.html</guid><description>Note I put this writeup in my security research section, thats just for convince. Later on I will create a section for all my writeups to come.
Overview Attribute Value OS Linux Difficulty Easy Category Web + Privilege Escalation Key CVEs CVE-2026-40933, CVE-2025-8110 Techniques Auth Bypass, MCP RCE, Symlink Abuse, Git Hooks Silentium is a two-stage exploitation box combining web application authentication weaknesses with a privilege escalation chain through Git hook manipulation. The path to user involves bypassing Flowise authentication and exploiting an MCP (Model Context Protocol) server vulnerability. Root escalation leverages Gogs repository management running with elevated privileges.</description></item></channel></rss>