Blog & Write-ups

Security research, CTF solutions, tool tutorials, and the latest in cybersecurity.

Featured

Write-up CTF

HackTheBox: Sau Machine Walkthrough

Complete walkthrough of the Sau machine from HackTheBox, covering SSRF exploitation, request-baskets vulnerability (CVE-2023-27163), and privilege escalation via Maltrail.

Jan 28, 2026 12 min read

Tutorial

Getting Started with Burp Suite Pro

A comprehensive guide to setting up and using Burp Suite Professional for web application security testing.

Jan 25, 2026 8 min

Write-up CTF

TryHackMe: Buffer Overflow Prep

Step-by-step guide to exploiting buffer overflow vulnerabilities in the OSCP-style practice room.

Jan 20, 2026 15 min

Tool Review

Nuclei vs Nikto: Web Vulnerability Scanners

Comparing two popular web vulnerability scanners - which one should you use for your next pentest?

Jan 18, 2026 6 min

News

Critical CVE-2026-0001: RCE in Popular Framework

Breaking down the latest critical vulnerability affecting millions of servers worldwide.

Jan 15, 2026 4 min

Tutorial

Active Directory Pentesting Basics

Learn the fundamentals of attacking and defending Active Directory environments.

Jan 10, 2026 20 min

Write-up

Bug Bounty: Finding IDOR in Production

How I found an IDOR vulnerability in a major SaaS platform and earned a $5,000 bounty.

Jan 5, 2026 10 min