Recent
![Ctrl+Space CTF Finals 2025 - RicingStar [Author Writeup]](/posts/ctrl+space-ctf-finals-2025/ricingstar/featured_ricingstar_hu_d1f75e2da6fe4767.png)
Ctrl+Space CTF Finals 2025 - RicingStar [Author Writeup]
·3939 words·19 mins
🌐 Web
Authored
Client-Side
Firefox
Extensions
Writeup for the Ctrl+Space CTF Finals 2025 web client-side Firefox challenge “RicingStar”.
![HTB Business CTF 2025 - Blockout [Author Writeup]](/posts/htb-businessctf-2025/blockout/featured_blockout_hu_a8e8e2938899f75e.png)
HTB Business CTF 2025 - Blockout [Author Writeup]
·1861 words·9 mins
🔗 Blockchain
Authored
Proxy-Pattern
UUPS
Undergassing
Author writeup for the “Blockout” medium blockchain challenge from HTB Business CTF 2025.
![HTB Business CTF 2025 - Spectral [Author Writeup]](/posts/htb-businessctf-2025/spectral/featured_spectral_hu_63e128e96f793432.png)
HTB Business CTF 2025 - Spectral [Author Writeup]
·1115 words·6 mins
🔗 Blockchain
Authored
Pectra
Tx.origin
Reentrancy
EIP-7702
Author writeup for the “Spectral” easy blockchain challenge from HTB Business CTF 2025.
![HTB Business CTF 2025 - Enlistment [Author Writeup]](/posts/htb-businessctf-2025/enlistment/featured_enlistment_hu_ca8243ed57225b74.png)
HTB Business CTF 2025 - Enlistment [Author Writeup]
·1183 words·6 mins
🔗 Blockchain
Authored
Warmup
EVM
Private-Visibility
Storage
Author writeup for the “Enlistment” very-easy blockchain challenge from HTB Business CTF 2025.
b01lersCTF 2025 - njaas
·1738 words·9 mins
🌐 Web
NextJS
CVE-2025-29927
CVE-2025-30218
Another view on how the popular CVE-2025-29927 NextJS middleware bypass could still be exploited.