Blog

Stealing user logins by hijacking a vulnerable webview implementation in a mobile app

A short writeup of finding a stored XSS vulnerability in an AI powered writing app

A medium rated Linux machine running Healthcare software

An easy rated Linux machine running an FTP webapp

A holiday CTF where you have to get NahamSec off the Naughty List

An easy rated Windows machine involving the BadSuccessor exploit