@codewithpike profile picture
Waqar Naeem @codewithpike

Software Developer trying to become a Red Team Penetration Tester.

Joined February 2020
  • Tweets 206
  • Following 469
  • Followers 58
58 Photos and videos
Every invention is a product of laziness 😂.
18
Amazing theoretical tutorial on TCP/IP model, by @kunalstwt. Learned about: - DHCP, - NAT's, - Control Planes, - and Middles boxes etc. #networking #computernetworks #devops #appsec
1
14
1,236
This was actually an easier box which was based on two CVES. One was Cacti rev shell CVE-2025-24367, while the other one was to escape the docker into host CVE-2025-9074. Learned how to escape docker and how to pragmatically use publicly available poc's. labs.hackthebox.com/achievem…

Owned MonitorsFour from Hack The Box!

I have just owned machine MonitorsFour from Hack The Box

labs.hackthebox.com
201
Waqar Naeem retweeted
Tom Dörr
@tom_doerr
May 25
Hunts down social media accounts across 400 networks github.com/sherlock-project/…
9
157
1,242
63,530
Waqar Naeem retweeted
GitHub Projects Community
@GithubProjects
May 21
D2 is a diagram scripting language that turns plain text into architecture diagrams. - CLI tool that renders `.d2` files to SVGs with live-reload on save. - Supports multiple layout engines like ELK and customizable themes. - Exports to SVG, PNG, PDF, and other formats. - Includes a web playground and language tooling for editors.
0:10
1
28
203
20,477
Guys this is the most difficult challenges I have done up until now. So, I came to the conclusion that I need to learn more about Windows sys admin, Powershell and active directory. labs.hackthebox.com/achievem… #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting

Owned Support from Hack The Box!

I have just owned machine Support from Hack The Box

labs.hackthebox.com
2
37
Waqar Naeem retweeted
Tom Dörr
@tom_doerr
May 19
Discovers real IPs behind Cloudflare github.com/musana/CF-Hero
5
148
1,074
51,900
HTB has tagged this challenge as very easy. I think it is not. Although, learned a lot regarding apis from this machine. labs.hackthebox.com/achievem… #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting

Owned TwoMillion from Hack The Box!

I have just owned machine TwoMillion from Hack The Box

labs.hackthebox.com
1
37
Hello everybody!!! This is me once again with a silly project of mine 😄. I made a auto reel scroller extension for the chrome browser, for all the procrastinators out there, like me. Hope you guys will like it, here is the link to github repo: github.com/waqarNaeem786/aut… #SaaS

GitHub - waqarNaeem786/auto-reel-scroller: auto reel scroller chrome extension for all platforms...

auto reel scroller chrome extension for all platforms tiktok, facebook and instagram. - waqarNaeem786/auto-reel-scroller

github.com
1
1
42
Well Well Well, . it is front-end code, I believe, for claude-code cli.
Chaofan Shou
@Fried_rice
Mar 31
Claude code source code has been leaked via a map file in their npm registry! Code: pub-aea8527898604c1bbb12468b…
43
Hey folks, I ditched zsh and Oh My Zsh for bash's built-in interactivity, and it’s super simple! 🌟 Here’s a quick setup to make your terminal colorful and show the Git branch:
2
56
parse_git_branch() { branch=$(git branch 2>/dev/null | sed -e '/^[^*]/d' -e 's/* \(.*\)/\1/') [ -n "$branch" ] && echo "($branch)" } if [ "$color_prompt" = yes ]; then PS1='\[\e[36m\][\u@\h]\[\e[0m\] \[\e[33m\]\W\[\e[0m\] \[\e[31m\]$(parse_git_branch)\[\e[0m\]\$ ' else
1
40
PS1='[\u@\h \w $(parse_git_branch)]\$ ' fi ---------------------------------- - For tab completion: bind 'set show-all-if-ambiguous on' bind 'TAB:menu-complete' No need for extra binaries—just pure bash goodness with a small trade-off! 😄 #TerminalTips #Bash
44
One of the most prominent things which I have heard from the #OSWE qualifiers is that they have to write manual scripts as the POC, in order recreate the experience I wrote my own small script to solve the portswigger academy challenge without using burp. #offensivesecuirty #CTF
2
173
Built a phishing tool in JS Go which generates link using ngrok on clicking the link user info like: OS, IP and Location are sent to the back-end server. github.com/waqarNaeem786/phi… #Cybersecurity #GoLang #JavaScript #Phishing #InfoSec #Backend #DevOps #EthicalHacking
0:25
74
Just wrapped up a deep dive into Binary Exploitation on exploit.education — took 3–4 days to crack the challenges, and it was absolutely worth it. Hands-on, self-paced, and super insightful. #ExploitDevelopment #BugBounty #EthicalHacking #Pwntools
51
And the Remote Access Trojan app is completed in React Native, I implemented the C2 server in GO because I am learning it understand the back-end dev, I am attaching the github repo to better understand the working for RAT. github.com/waqarNaeem786/RAT… #reactnative #golang #maldev

GitHub - waqarNaeem786/RAT-in-React-Native-: Remote Access Trojan in React Native and C2 Server in...

Remote Access Trojan in React Native and C2 Server in GO, for study Purposes only. - waqarNaeem786/RAT-in-React-Native-

github.com
141
So, I have started a project which lies on the offsec side I guess, A RAT made with React Native and GO, GO provides the C2 server for data extraction etc, up until now I have made weather UI disguise. #offsec #bugbounty #malwaredev
0:17
107
So it’s done. Built a small 2-player game with JavaScript and Go. You catch falling drops that match your color. Used WebSockets for real-time sync and room-based play. Learned a lot. Fixing a few bugs, then pausing the project. Might come back to it later. #golang #javascript
1:05
48
Aaagh, whole damn day unable to spawn two users in one room, will start off from here tomorrow. github.com/waqarNaeem786/cla…

GitHub - waqarNaeem786/clash-of-colors: Multi-player game in Javascript canvas and Back End in GO.

Multi-player game in Javascript canvas and Back End in GO. - waqarNaeem786/clash-of-colors

github.com
1
17
Load more