p4p1 https://leosmith.wtf/blog/index.html Leo Smith's blog p4p1 Tue. 28 Apr 2026 https://leosmith.wtf/blog/p3ng0s-devlog-attackingwindows.html The fourth and final devlog of p3ng0s focused on os_killer.sh built to target windows computers. p4p1 Tue. 21 Apr 2026 https://leosmith.wtf/blog/p3ng0s-devlog-dropbox.html The third p3ng0s devlog about it's included dropbox mode. p4p1 Tue. 14 Apr 2026 https://leosmith.wtf/blog/p3ng0s-devlog-hashcat.html The second p3ng0s devlog on cracking hashes in live .iso mode. p4p1 Thu. 09 Apr 2026 https://leosmith.wtf/blog/p3ng0s-devlog-archconf.html A blog post on p3ng0s general pentest automation. Showcasing the advancements in my OS. p4p1 Mon. 16 Mar 2026 https://leosmith.wtf/blog/creating-arch-aur-package.html This blog post describes how to create a Arch Linux AUR package. p4p1 Mon. 16 Feb 2026 https://leosmith.wtf/blog/citrix-pentest.html Using citrix to expand your foothold in a company network. p4p1 Thu. 20 Feb 2025 https://leosmith.wtf/blog/offsec-review.html A review on Offensive Security Certificates p4p1 Tue. 18 Feb 2025 https://leosmith.wtf/blog/hiding-openvpn-traffic.html Using the stunnel tool we are hiding openvpn connection on our hacker drop boxes for internal pentests and red team engagements p4p1 Mon. 17 Feb 2025 https://leosmith.wtf/blog/generating-code-ai.html How I created a tool to generate AI diagrams and how this could be leveraged as an attack surface. p4p1 Mon. 22 Jul 2024 https://leosmith.wtf/blog/pwa-phishing.html Creating mobile phishing attacks using progressive Web Applications 0.0 p4p1 Wed. 26 Jun 2024 https://leosmith.wtf/blog/metasploit-and-havoc.html A simple and easy blog post showcasing how to extend havoc payloads using the metasploit framework. p4p1 Do. 11 Apr 2024 https://leosmith.wtf/blog/basic-antivirus-evasion.html In this post I will go through some basic Anti Virus evasion techniques and showcase a cute script that helps automate the process of developement with havoc p4p1 Mon. 01 Apr 2024 https://leosmith.wtf/blog/random_xss_tools.html I found an exploit inside of a OSINT tool from github to enumerate usernames of a target on different accounts. p4p1 Thu. 07 Mar 2024 https://leosmith.wtf/blog/wifi-pineapple-advanced-phishing.html Using Modlishka and the wifi pineapple to trick users connected to a fake access point in logging in to different services and phishing them while even bypassing 2 FA p4p1 Sun. 18 Feb 2024 https://leosmith.wtf/blog/ultimate-resume-builder.html I create a little project to get into chatgpt project building by creating a resume generator! p4p1 Sat. 10 Feb 2024 https://leosmith.wtf/blog/checklists-cybersecurity.html My view on creating checklists in pentesting and how to make your own. A review on what of the posts I made back in the day on how I organised my work in the past. p4p1 Tue. 30 Jan 2024 https://leosmith.wtf/blog/glinet-ctf.html I created a Capture The Flag with a GL Inet router to pay out beers during infosec conferences. p4p1 Mon. 29 Jan 2024 https://leosmith.wtf/blog/doom-eyelander.html I Created a simple doom mod that turns the doomguy's fist into a eyelander style weapon where the damage is greater after a kill! p4p1 Sat. 27 Jan 2024 https://leosmith.wtf/blog/big-boy-cert.html After completing APT Labs, OFFSHORE, rastalabs and cybernetics on hack the box I am providing a review of my personal opinion on the certs! p4p1 Wed. 17 Jan 2024 https://leosmith.wtf/blog/leosmith-wtf-origins.html A blog post to commemorate 10 years of me doing info sec / cyber sec by going through the software I used to use back in the day. p4p1 Thu. 04 Jan 2024 https://leosmith.wtf/blog/dwm-gestures.html I coded touch controls for my fork of dwm since I started using it on my pinephone ^^ p4p1 Fri. 22 Dec 2023 https://leosmith.wtf/blog/havoc-extentions-indepth.html A in-depth tutorial on creating havoc extensions and getting them pulished on the store. p4p1 Tue. 19 Dec 2023 https://leosmith.wtf/blog/dwm-keyboard-patch.html I managed to port over a virtual keyboard on my dwm windows manager for amazing phone and tablet support ^^ p4p1 Fri. 08 Dec 2023 https://leosmith.wtf/blog/batocera-linux.html I built a mediacenter / gaming setup from an old hard drive to enjoy my old school video games through emulation and saved movies and music. p4p1 Sun. 03 Dec 2023 https://leosmith.wtf/blog/ultimate-home-lab.html I decided to create over the weekend my ultimate home lab for working at home and on the go p4p1 Sat. 25 Nov 2023 https://leosmith.wtf/blog/havoc-store-template.html I created a little website for Havoc to find extensions I implemented inside of havoc directly an extension page and I worked on creating cool examples to showcase what can be done with the API with reporting p4p1 Sun. 19 Nov 2023 https://leosmith.wtf/blog/ubuntu-touch.html Installing ubuntu touch on my phone with a container that has the impacket suite to mess with windows laptops I have in my network. p4p1 Fri. 20 Oct 2023 https://leosmith.wtf/blog/havoc-again.html I updated my code for the havoc widgets and dialogs and implemented more widgets inside of them ^^ p4p1 Tue. 17 Oct 2023 https://leosmith.wtf/blog/havoc-gui-advancements.html I added more features to the havoc c2 python API and create a brand new Logs widget. p4p1 Tue. 10 Oct 2023 https://leosmith.wtf/blog/havocui-widget-python.html I created the Widget class inside of the HavocUI python API where you can create widgets for the Havoc User Interface. p4p1 Wed. 06 Sep 2023 https://leosmith.wtf/blog/xss-bomb-front-end.html I updated the front-end of XSS Bomb and created a whole new design for working with xss_bomb p4p1 Mon. 04 Sep 2023 https://leosmith.wtf/blog/p3ng0s-release.html I created my own arch based linux distribution that incorporates all of the tools I use for work and such. p4p1 Sat. 02 Sep 2023 https://leosmith.wtf/blog/havoc-c2-pythonapi.html I extended the python API of the Havoc C2 client to support GUI functionality. This post is how to use the functions I created and how to write Havoc Python extensions. p4p1 Mon. 31 Jul 2023 https://leosmith.wtf/rice/ Not a blog post this time but a new section has been added to the website. Go checkout the link to this feed message and you will see a wiki to my newest bigest project to date my own ISO. p4p1 Mon. 03 Jul 2023 https://leosmith.wtf/blog/burp-suite-to-notion.html A devlog about how I created a BurpSuite Extension that uploads a sitemap to the notion note taking app. p4p1 Thu. 22 May 2023 https://leosmith.wtf/blog/osint-for-non-technicals.html A introduction to OSINT for non technical people. p4p1 Wed. 01 Mar 2023 https://leosmith.wtf/blog/flipper-zero-ducky-parser.html I recently got a flipper zero and started working on creating a firmware reimplementing the ducky language to have duckylang2.0 features p4p1 Tue. 01 Nov 2022 https://leosmith.wtf/blog/android-tasker-recon.html I turned my android phone in a automatic recon device. Using tasker and termux with the power of bash I was able to script my android phone to automatically map out a network using nmap when it connects to the wifi. #cybersecurity #pentesting #infosec #nmap #android #informationsecurity p4p1 Sat. 22 Oct 2022 https://leosmith.wtf/blog/wifi-pineapple-karma.html Stealing someones account is to easy! With the help of a Wifi Pineapple and using a little known attack called Karma I was able to orcastrate a phishing attack which allows an attacker to steal emails and passwords. #cybersecurity #penetration_testing #information_security #infosec #hak5 #wifi_pineapple #wifi #security p4p1 Wed. 19 Oct 2022 https://leosmith.wtf/blog/organisation-cybersecurity.html In the current cyber security landscape it is hard to organise all of the work that needs to be done. This post covers my latest project where I build a landing page linked to my trello so that I can organise my day to day work. #cybersecurity #pentest # pentesting #information_security #infosec p4p1 Mon. 17 Oct 2022 https://leosmith.wtf/blog/linkedin-marketing-workflow.html Today I created a github workflow which links my rss feed to my linkedin so that it automatically posts when I release a blog post. p4p1 Sun. 16 Oct 2022 https://leosmith.wtf/blog/gophish-setup-tutorial.html Create a gophish phishing campain tutorial p4p1 Sun. 09 Oct 2022 https://leosmith.wtf/blog/vim-script-auto-edit.html Creating vimscripts to automate multiple file edits p4p1 Wed. 28 Sep 2022 https://leosmith.wtf/blog/create-arch-iso.html A blog post detailing how to use archiso module and build your own iso file p4p1 Sun. 04 Sep 2022 https://leosmith.wtf/blog/understanding-illegal-streaming.html A blog post on reverse engineering illegal streaming sites to understand more about how they operate. p4p1 Thu. 25 Aug 2022 https://leosmith.wtf/blog/rubber-ducky-lazy-work.html Writing a ducky script payload to automate fake work p4p1 Fri. 12 Aug 2022 https://leosmith.wtf/blog/lockpicking-intro.html A small post to introduce lockpicking p4p1 Tue. 09 Aug 2022 https://leosmith.wtf/blog/wifi-pineapple-evilap.html Using a Wifi Pineapple to setup a Evil WPA and steal a half WPA2 handshake and crack it p4p1 Fri. 05 Nov 2021 https://leosmith.wtf/blog/dwm-tint2-support.html Created a quick patch to get tint2 to work on my distribution p4p1 Tue. 19 Oct 2021 https://leosmith.wtf/blog/github-tryhackme-action.html Created a github action to update profile readme to include TryHackMe badge! p4p1 Sat. 16 Oct 2021 https://leosmith.wtf/blog/ide-tryhackme.html A little write-up on IDE from tryhackme p4p1 Tue. 12 Oct 2021 https://leosmith.wtf/blog/websocket-mitm.html Writing chrome extension and script for WebSocket MITM. p4p1 Tue. 28 Sep 2021 https://leosmith.wtf/blog/breaking-in-os.html A quick tutorial on how to brake into windows, linux laptops for recovery and just a bit of fun p4p1 Sun. 26 Sep 2021 https://leosmith.wtf/blog/xss-bomb-devlog1.html New devlog on XSS Bomb where I emplemented security features in the login and created a social network sharing feature for user submited code. p4p1 Fri. 17 Sep 2021 https://leosmith.wtf/blog/linkedin-osint.html A post on OSINT and LinkedIN p4p1 Sun. 05 Sep 2021 https://leosmith.wtf/blog/xss-bomb.html A blog post to showcase my project xss bomb, How it is designed how I built it and how you can contribute :) p4p1 Sat. 03 Jul 2021 https://leosmith.wtf/blog/certs-infosec.html A quick blog post about the certifications I've been doing p4p1 Fri. 16 Apr 2021 https://leosmith.wtf/blog/wreath-report.html Did the wreath network on TryHackMe with my good friend Cypher007 p4p1 Fri. 05 Feb 2021 https://leosmith.wtf/blog/getting-into-ad.html A quick tutorial on how to setup and Active Directory Lab p4p1 Wed. 20 Jan 2021 https://leosmith.wtf/blog/owasptop10-tryhackme-writeup.html A in depth explanation of the OWASP Top 10 using tryhackme p4p1 Tue. 19 Jan 2021 https://leosmith.wtf/blog/docker-workstation.html Building docker containers basics p4p1 Thu. 14 Jan 2021 https://leosmith.wtf/blog/hunting-idor-recon.html Using BurpSuite to find IDOR during recon. p4p1 Sat. 24 Oct 2020 https://leosmith.wtf/blog/mrrobot-tryhackme-writeup.html Mr Robots Tryhackme Writeup (wordpress exploit) p4p1 Mon. 28 Sep 2020 https://leosmith.wtf/blog/throwback-tryhackme-writeup.html A little writeup on my active directory certfication on tryhackme p4p1 Fri. 04 Sep 2020 https://leosmith.wtf/blog/gamingserver-tryhackme.html Completing the easy boot2root on tryhackme p4p1 Tue. 11 Aug 2020 https://leosmith.wtf/blog/building-testing-machine.html How to build a virtual machine for testing pentest and debugging p4p1 Fri. 09 Aug 2020 https://leosmith.wtf/blog/defcon-safe-mode-ctf.html My attempt to the defcon CTF p4p1 Thu. 06 Aug 2020 https://leosmith.wtf/blog/lfi-tryhackme.html learning local file inclusion p4p1 Wed. 29 Jul 2020 https://leosmith.wtf/blog/cracking-with-radare.html Cracking a simple binary with radare2 p4p1 Wed. 08 Jul 2020 https://leosmith.wtf/blog/timetravel-website.html A little trip to the past to see my personnal website evolution. p4p1 Thu. 26 Jun 2020 https://leosmith.wtf/rice/index.html Added my rice / config page p4p1 Wed. 20 may 2020 https://leosmith.wtf/blog/anonymous-tryhackme-writeup.html Completing the tryhackme room p4p1 Mon. 04 May 2020 https://leosmith.wtf/blog/convertmyvideo-tryhackme-writeup.html Completing the tryhackme room p4p1 Sun. 03 may 2020 https://leosmith.wtf/blog/tropdrole-writeup.html Official Write-up for my TROPDROLE p4p1 Sat. 02 May 2020 https://leosmith.wtf/blog/picklerick-tryhackme-writeup.html Completing the tryhackme room p4p1 Sat. 02 May 2020 https://leosmith.wtf/blog/heartbleed-tryhackme-writeup.html Completing the tryhackme room p4p1 Fri. 01 may 2020 https://leosmith.wtf/blog/android-roms-ungoogle.html Removing a locked boot loader on android p4p1 Wed. 28 April 2020 https://leosmith.wtf/blog/ice-tryhackme-writeup.html Completing the tryhackme room p4p1 Wed. 22 April 2020 https://leosmith.wtf/blog/vulnversity-tryhackme-writeup.html Completing the tryhackme room p4p1 Mon. 20 April 2020 https://leosmith.wtf/blog/wallpaper-gen.html Showcasing a wallpaper generator project in python. p4p1 Sun. 19 April 2020 https://leosmith.wtf/blog/xvwm.html Showcasing a x11 shell project I made. p4p1 Sat. 18 April 2020 https://leosmith.wtf/blog/ignite-tryhackme-writeup.html Completing the tryhackme room. p4p1 Fri. 17 April 2020 https://leosmith.wtf/blog/tinder-unblur-plug-in.html Showcasing a plugin I created for tinder. p4p1 Tue. 16 April 2020 https://leosmith.wtf/blog/dwm-fibonacci-patch.html Showcasing a plugin I created for tinder.