Blog & Write-ups

Security research, CTF solutions, tool tutorials, and the latest in cybersecurity.

Featured

Write-up CTF

HackTheBox: Sau Machine Walkthrough

Complete walkthrough of the Sau machine from HackTheBox, covering SSRF exploitation, request-baskets vulnerability (CVE-2023-27163), and privilege escalation via Maltrail.

Jan 28, 2026 12 min read

HTB Pwnable

HTB: 'Usage' - From SQLi to RCE

Exploiting a blind SQL injection to leak admin credentials and leveraging a custom management portal to gain shell access.

Apr 12, 2026 Completed

TryHackMe

TM: 'Brainpan' - Buffer Overflow Prep

Manual exploit development for a custom vulnerable binary. Fuzzing, finding offset, and overwriting EIP for local privilege escalation.

Mar 28, 2026 Advanced

Technique

Advanced WAF Bypass Strategies

Using double encoding, white-space manipulation, and unconventional protocol usage to slip payloads past modern firewalls.

Mar 15, 2026 Research

OSCP Prep

OffSec: 'Hutch' Walkthrough

Exploiting insecure SMB shares and using Impacket's secretsdump to harvest NTLM hashes for Active Directory takeover.

Feb 20, 2026 Medium

Automation

Customizing Nuclei for Rapid Recon

Developing YAML-based templates to automate the discovery of unique business logic vulnerabilities at scale.

Feb 10, 2026 Stable

Bug Bounty

Chain reaction: XSS to Account Takeover

How a simple stored XSS was combined with a broken session management vulnerability to compromise any user account.

Jan 28, 2026 Critical

Tool Review

Automating Recon with Custom Nuclei Templates

How to write and chain custom Nuclei templates to discover unique vulnerabilities at scale across massive attack surfaces.

Jan 18, 2026 6 min

News

Critical CVE-2026-0001: RCE in Popular Framework

Breaking down the latest critical vulnerability affecting millions of servers worldwide.

Jan 15, 2026 4 min

Tutorial

Active Directory Pentesting Basics

Learn the fundamentals of attacking and defending Active Directory environments.

Jan 10, 2026 20 min

Write-up

Bug Bounty: Finding IDOR in Production

How I found an IDOR vulnerability in a major SaaS platform and earned a $5,000 bounty.

Jan 5, 2026 10 min