Niklas Heringer
Niklas Heringer
Cybersecurity & Math.
⌘K
Subscribe Sign in
Niklas Heringer

Niklas Heringer

Forensics Challenge Day Two - Sleuth Kit Deep Dive
forensics-challenge

Forensics Challenge Day Two - Sleuth Kit Deep Dive

On day two of my forensics challenge, I dive deep into Sleuth Kit’s layered toolset. From volumes to inodes, metadata, deleted files, timelines, and journals. I explore the core forensic workflows and decode a real ext4 image step by step.
Active Directory Demystified: A Practical Learning Journey - Day One
ad-challenge

Active Directory Demystified: A Practical Learning Journey - Day One

Active Directory powers most enterprise networks, and attackers love it. This guide simplifies AD with real-world analogies and attacker-focused insights to help you learn, enumerate, and exploit it effectively.
Digital Forensics Challenge: Basics, Mounting & Analyzing Disk Images (Day 1)
forensics-challenge

Digital Forensics Challenge: Basics, Mounting & Analyzing Disk Images (Day 1)

In this introductory forensics lab, we explore how to mount and examine disk images using loop devices, losetup, SleuthKit tools, and file system inspection techniques. A hands-on walkthrough for raw, split, and forensic image formats like AFF and EWF.
From LFI to RCE: Exploiting File Inclusion Like a Pro
remote-code-execution

From LFI to RCE: Exploiting File Inclusion Like a Pro

A hands-on deep dive into exploiting file inclusion vulnerabilities; from simple LFI to full RCE using session poisoning, log injection, and PHP wrappers.
More to Go: Clean Code & Core Concepts
go

More to Go: Clean Code & Core Concepts

A hands-on walkthrough of Go’s core building blocks. Arrays, slices, loops, functions, structs, and maps - explained with performance in mind. No fluff, just clarity.
Why Go? A Hacker’s First Dive into Golang
go

Why Go? A Hacker’s First Dive into Golang

Ever wondered why Go keeps popping up in modern toolchains and cloud-native stacks? Here’s a hands-on dive into the syntax, philosophy, and quirks of Golang; written from a hacker’s point of view.
Carving Chaos: Building and Breaking Filesystems for Fun and Forensics
digital-forensics

Carving Chaos: Building and Breaking Filesystems for Fun and Forensics

Crafted a Bash-powered forensics playground: build virtual file systems, inject payloads, carve lost files with Foremost & Scalpel — and hit every roadblock worth debugging.
Introduction to File Inclusion
local-file-inclusion

Introduction to File Inclusion

An in-depth and hands-on walkthrough on spotting and exploiting Local File Inclusion (LFI); from classic payloads to modern bypasses, straight from HTB Academy labs.
From Basic to Blessed: Uplifting Your Webshell Game
webshell

From Basic to Blessed: Uplifting Your Webshell Game

From basic payloads to protected and self-destructing shells; a hands-on journey upgrading your webshells for stealth, power, and style.
SQLi Hands-On: Injecting Chaos
sql-injection

SQLi Hands-On: Injecting Chaos

A practical deep dive into SQL Injection in DVWA; from simple payloads to reading and writing files, fuzzing with ffuf, and scripting attacks in Burp Suite.
How to Proceed after the User Flag: My Beginner’s Priv Esc Flow
privilege-escalation

How to Proceed after the User Flag: My Beginner’s Priv Esc Flow

Getting user.txt is just the beginning. Here’s how I hunt for privilege escalation paths on Linux boxes; what I check, how I think, and why it still stumps me sometimes.
My UnderPass Runthrough - Learnings
htb

My UnderPass Runthrough - Learnings

Cracked the UnderPass HTB box by skipping dead ends, abusing SNMP leaks, and turning mosh-server into a root shell with zero password; here is how.
An Introduction to Shells: Essentials Knowledge
shell

An Introduction to Shells: Essentials Knowledge

Understand what shells really are, how they evolved, why they matter, and how different types like reverse shells and webshells work.
Why Clean Logs Matter in Forensics - And How to Get Them Right
cli-tools

Why Clean Logs Matter in Forensics - And How to Get Them Right

In digital forensics, documentation is just as important as discovery. This guide introduces a CLI tool that helps forensic analysts create structured, signed, and legally sound logs - from the first command to the final report.
Data Engineering With Dagster Part Eight: Metadata
dagster

Data Engineering With Dagster Part Eight: Metadata

Dig into materialization metadata, inline visualizations, and best practices for asset observability using Dagster.
Data Engineering With Dagster Part Seven – Event-Driven Pipelines with Sensors
dagster

Data Engineering With Dagster Part Seven – Event-Driven Pipelines with Sensors

From Passive Pipelines to Reactive Workflows So far, we’ve scheduled jobs based on time: “Run this every Monday” or
Data Engineering With Dagster Part Six – Partitioning & Backfills
dagster

Data Engineering With Dagster Part Six – Partitioning & Backfills

Learn how to make your pipelines smarter by slicing them into manageable, date-based partitions and handling backfills like a pro.
Data Engineering With Dagster Part Five – Automating With Schedules
dagster

Data Engineering With Dagster Part Five – Automating With Schedules

Dagster finally earns its “orchestrator” title - this part dives into jobs, asset selection, cron expressions, and how to wire everything into automated schedules.