Hey There! This is a writeup of the solution to the “This then what huh?” CTF challenge. The challenge presents a web-based puzzle where the goal is to navigate a cursor through a series of instru...

Hey there! This is a deep dive into the “AgeBarrier” CTF challenge from Abyss, a clever web security task that involved dissecting a “bleeding-edge” age verification system built on the Spring Boo...

Hey there! this is An analysis of the “Waffles” CTF challenge, a complex web security task that required bypassing a custom Web Application Firewall (WAF), learning how a piece of obfuscated JavaS...

Hey there! This is an analysis of the “Single Slice Of CakeNews” CTF challenge, a multi-stage web challenge that involved finding a XSS vulnerability, manipulating the behavior of automated bots, ...

Writeup for web/emojicrypt, Hacking Time and Randomization Vulnerability Overview web/emojicrypt Uses random.choice(NUMBERS) for _ in range(32) with the default seed. Normally, in python3, th...

Portrait Gallery XSS Vulnerability Writeup Vulnerability Overview The Portrait Gallery application contains a stored XSS vulnerability that allows attackers to steal the admin bot’s cookie contai...

Hey There! Today I will be attempting to hack the Picoctf Forbidden Paths (Medium) challenge. Description Can you get the flag? We know that the website files live in /usr/share/nginx/html/ and t...

Hey there In this writeup, ill show how to exploit a vulnerable web service called CaaS (Cowsay as a Service) found in PicoCTF practice. Challenge Overview I am provided with two pieces of inform...

Cryptography Challenge Writeup: Prove Me Wrong Challenge Description Your quiet day takes an unexpected twist when an encrypted message suddenly appears on your screen. It’s from an old friend, s...

Hey there! Today, I tackled the PicoCTF SQLite Medium Web Challenge. Here’s a step-by-step breakdown of how I solved it: Initial Screen We are greeted with the following screen: Login Failed S...