Welcome: notes from the offensive side
What this blog is about, who I am, and the kind of write-ups you'll find here.
Welcome. I’m inneromost, an independent penetration tester. This blog is where I turn engagement notes, lab experiments, and research into write-ups worth keeping.
What you’ll find here
- Write-ups — web, network, and Active Directory attack chains, start to finish
- Exploit dev & tradecraft — the why, not just the payload
- Detection research — building offensive tooling and measuring how it gets caught (AV, YARA, EDR/behavioral)
- CTF & lab notes — quick, reproducible, copy-pasteable
Everything here comes from authorized testing or isolated labs. Methodology over targets.
The format
Posts are practical and command-first. Expect blocks you can actually run:
1
2
# enumerate, don't guess
nmap -sC -sV -oA scans/initial 10.10.10.10
…and the reasoning behind each step, with callouts for the gotchas:
Kerberoasting only needs a valid domain account — not local admin. The bottleneck is almost always cracking, not collection.
Code gets proper highlighting, whether it’s a quick one-liner or a full PoC:
1
2
3
import requests
r = requests.get("https://target/api/v1/users", headers={"Authorization": f"Bearer {token}"})
print(r.status_code, len(r.json()))
Work with me
Looking for a pentest? Reach me at contact@inneromost.com or see the About page.
More soon — first technical write-up is on its way.