Recent
b01lersCTF 2025 - njaas
·1738 words·9 mins
🌐 Web
NextJS
CVE-2025-29927
CVE-2025-30218
Another view on how the popular CVE-2025-29927 NextJS middleware bypass could still be exploited.
IrisCTF 2025 - webwebhookhook
·2490 words·12 mins
🌐 Web
Writeup
DNS Rebinding
Race Condition
TOCTOU
Writeup for webwebhookhook web challenge of IrisCTF 2025
MOCA CTF 2024 Quals - RaaS
·998 words·5 mins
🌐 Web
XSS
URL Spec
Writeup for RaaS client-side web challenge of MOCA CTF Quals 2024
Intigriti Monthly Challenge 1223
·1970 words·10 mins
🌐 Web
ReDoS
SSTI
RCE
Smarty
PHP
PCRE Preg_match
Writeup for Intigriti December Challenge (1223)
HackTheBox University CTF 2023 - WindowsOfOpportunity
·688 words·4 mins
🧩 Rev
Window-Sliding
Writeup for WindowsOfOpportunity reversing challenge of HackTheBox University CTF 2023.