Posts
Muhammad Adel
Cancel

BlackHatMEA Qualifications 2022 CTF Web Challenges Writeup

Peace be upon all of you, on this writeup I am going to cover the solutions of some web challenges from BlackHatMEA CTF. We have participated under the team 0xCha0s. Jimmy’s Blog Difficulty: Hard...

ASCWGs Qualifications 2022 CTF Web Challenges Writeup

Peace be upon all of you, on this writeup I am going to cover the solutions of all web challenges for Arab Security Cyber Wargames 2022 qualification phase. My team 0xCha0s achieved the 5 place bet...

Hackerone Android Challenges Writeups

Peace be upon all of you, on this writeup I am going to cover the solutions of all android challenges on Hackerone (Thermostat - Intentional Exercise - Oauthbreaker - Webdev). Difficulty: Easy and...

Unrestricted File Upload Leads to SSRF and RCE

Introduction Peace be upon you all, I am going to share with you a vulnerability that I have found almost a year ago and it is remarkable for me because it was the first critical one for me anyway ...

I owe your Request | HTTP Request Smuggling leads to Full Accounts takeover

Introduction Peace be upon you all, this is actually my first writeup which going to be about a very interesting vulnerability, HTTP Request Smuggling, which I found in a private program which I wa...

Cybertalents Space Web Challenge Writeup

Description you might need some space XD. Difficulty: Hard Challenge Link: http://3.126.138.80/catch/http://ec2-35-158-236-11.eu-central-1.compute.amazonaws.com/space/ Solution Exploring Open...

Cybertalents catchMomen Web Challenge Writeup

Description Don’t Try To 3scape From Your Destiny ! Difficulty: Medium Challenge Link: http://3.126.138.80/catch/ Solution Exploring It seems like a normal website for a company. there is on...

Hackerone BugDB challenge Writeup

Peace be upon all of you, on this writeup I am going to cover the solutions of three challenges on Hacekrone related to GraphQL, they have three parts under the name BugDB v1/3. Difficulty: Easy a...

Cybertalents Crashed Machine Writeup

Description Get The highest privilege on the machine and find the flag! Difficulty: Hard Target IP: 3.122.178.169 Target IP: 18.193.129.237 ‌Challenge Link: https://cybertalents.com/challenges...

Cybertalents Shadower Machine Writeup

Description Get The highest privilege on the machine and find the flag! Target IP: 35.156.4.248 Challenge Link: https://cybertalents.com/challenges/machines/shadower User Nmap PORT STATE SE...