> For the complete documentation index, see [llms.txt](https://docs.wehost.co.in/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.wehost.co.in/blog.md).

# Blog

- [The Journey of how I passed CISSP](https://docs.wehost.co.in/blog/the-journey-of-how-i-passed-cissp.md)
- [How Nmap gets what OS is running by using different probes](https://docs.wehost.co.in/blog/how-nmap-gets-what-os-is-running-by-using-different-probes.md)
- [How PsExec or similar tools operate over SMB to achieve remote command execution](https://docs.wehost.co.in/blog/how-psexec-or-similar-tools-operate-over-smb-to-achieve-remote-command-execution.md)
- [Beyond Session Hijacking: Using JavaScript Libraries for Comprehensive User Profiling Through XSS](https://docs.wehost.co.in/blog/beyond-session-hijacking-using-javascript-libraries-for-comprehensive-user-profiling-through-xss.md)
- [Why does encoded message have a = or ==](https://docs.wehost.co.in/blog/why-does-encoded-message-have-a-or.md)
- [What Does "/bin/bash -p" Do?](https://docs.wehost.co.in/blog/what-does-bin-bash-p-do.md)
- [Extract username from private SSH key](https://docs.wehost.co.in/blog/extract-username-from-private-ssh-key.md)
- [Purpose of Service Principal Names (SPN) in Active Directory](https://docs.wehost.co.in/blog/purpose-of-service-principal-names-spn-in-active-directory.md)
- [Get Passwords from Teamviewer windows (No Metasploit)](https://docs.wehost.co.in/blog/get-passwords-from-teamviewer-windows-no-metasploit.md)
- [Difference between actively logged on users, locally logged on users and remotely logged users](https://docs.wehost.co.in/blog/difference-between-actively-logged-on-users-locally-logged-on-users-and-remotely-logged-users.md)
- [Packet Flow in RouterOS](https://docs.wehost.co.in/blog/packet-flow-in-routeros.md)
- [Depixelating information in the document (finding what was not supposed to be found)](https://docs.wehost.co.in/blog/depixelating-information-in-the-document-finding-what-was-not-supposed-to-be-found.md)
- [Spotting Spoofing Securing Your Email with DMARC, DKIM, and SPF](https://docs.wehost.co.in/blog/spotting-spoofing-securing-your-email-with-dmarc-dkim-and-spf.md)
- [Stop Telling People to “Just Look at the URL”: You're Not That Special](https://docs.wehost.co.in/blog/stop-telling-people-to-just-look-at-the-url-youre-not-that-special.md)
- [NFS Isn’t Just File Sharing — It’s RPC in Disguise](https://docs.wehost.co.in/blog/nfs-isnt-just-file-sharing-its-rpc-in-disguise.md)
- [I Had Write Permissions... So Why Was Linux Saying "No"?](https://docs.wehost.co.in/blog/i-had-write-permissions...-so-why-was-linux-saying-no.md)
- [Post-Root Enlightenment: Why You Really Pwn Boxes — Thanks to IppSec](https://docs.wehost.co.in/blog/post-root-enlightenment-why-you-really-pwn-boxes-thanks-to-ippsec.md): Inspired by IppSec’s approach to always learn beyond the root flag
- [From Chaos to Compliance A Smart Audit Logging Strategy for MariaDB](https://docs.wehost.co.in/blog/from-chaos-to-compliance-a-smart-audit-logging-strategy-for-mariadb.md)
- [SELinux: A Practical Guide for Real-World Linux Security](https://docs.wehost.co.in/blog/selinux-a-practical-guide-for-real-world-linux-security.md)
- [How Certificate Transparency Logs Work](https://docs.wehost.co.in/blog/how-certificate-transparency-logs-work.md)
- [I Lost My Automation Server: A Real-World Incident Response Lesson](https://docs.wehost.co.in/blog/i-lost-my-automation-server-a-real-world-incident-response-lesson.md)
- [Why SSH Says client\_loop send disconnect Broken pipe](https://docs.wehost.co.in/blog/why-ssh-says-client_loop-send-disconnect-broken-pipe.md)
- [What Is a File Descriptor?](https://docs.wehost.co.in/blog/what-is-a-file-descriptor.md)
- [Reset Nessus Username & Password via CLI](https://docs.wehost.co.in/blog/reset-nessus-username-and-password-via-cli.md)
- [The CNAME Paradox: Why Your Root Domain Can't Be an Alias](https://docs.wehost.co.in/blog/the-cname-paradox-why-your-root-domain-cant-be-an-alias.md)
- [Your $150M Outage Started With One Wrong Assumption: Do You Even Know How to Talk During Incidents?](https://docs.wehost.co.in/blog/your-usd150m-outage-started-with-one-wrong-assumption-do-you-even-know-how-to-talk-during-incidents.md)
- [Presence-Aware Infrastructure: My Lab Knows When I'm Home (and Saves Me $$$)](https://docs.wehost.co.in/blog/presence-aware-infrastructure-my-lab-knows-when-im-home-and-saves-me-usdusdusd.md)
- [From Curiosity to Backdoor: How I Found a Stealthy Persistence Technique in EC2 Instance Connect](https://docs.wehost.co.in/blog/from-curiosity-to-backdoor-how-i-found-a-stealthy-persistence-technique-in-ec2-instance-connect.md)
- [From Shadow IT to AI-Governed Infrastructure](https://docs.wehost.co.in/blog/from-shadow-it-to-ai-governed-infrastructure.md)
- [Leveraging Multiple Tor Exit Nodes for Data Exfiltration: A Containerized Approach](https://docs.wehost.co.in/blog/leveraging-multiple-tor-exit-nodes-for-data-exfiltration-a-containerized-approach.md)
- [Adaptive Percentage-Based Search: Finding ID Ranges Without Getting Blocked](https://docs.wehost.co.in/blog/adaptive-percentage-based-search-finding-id-ranges-without-getting-blocked.md)
- [The Zombie User: AWS IAM Identity Center Session Persistence on the Management Account](https://docs.wehost.co.in/blog/the-zombie-user-aws-iam-identity-center-session-persistence-on-the-management-account.md)
- [The First Rule of Compression: Why JPEG Uses YUV Instead of RGB](https://docs.wehost.co.in/blog/the-first-rule-of-compression-why-jpeg-uses-yuv-instead-of-rgb.md)
- [Roles Are Just an Abstraction: Rethinking Authorization from First Principles](https://docs.wehost.co.in/blog/roles-are-just-an-abstraction-rethinking-authorization-from-first-principles.md)
