- This is my research, writeup and personal blog.
- You’ll find here a wide variety of posts about results of Vulnerability Research, CTF Writeups, Hacking techniques I put together while working, Bug Bounties and even my personal thoughts and opinions.
- This blog does not represent my employer. All views and opinions expressed here are my own.
PWNSECCTF 2024 - Jinja Mastery
A writeup for the Jinja Mastery challenge from PWNSECCTF 2024
PWNSECCTF 2024 - Taco Shop
A writeup for the Taco Shop challenge from PWNSECCTF 2024
TL-WR741 - Part I: Command injection vulnerability
An outline of a smaller vulnerability research project leading to the discovery of a command injection vulnerability in an older TP-Link router
HTB Weather App - Perfect weather to surf
An easy WEB challenge from HackTheBox. A Unicode encoding fault in NodeJS leads to an SQLi via SSRF
HTB Restaurant - ROP It Till You Make It
Restaurant is an easy PWN challenge on HackTheBox about exploiting ROP simple buffer to do ROP
HTB Forge
Forge is a medium machine on HackTheBox mainly revolving around SSRF and LFI