Introduction InsecureShop is an Android application that is designed to be intentionally vulnerable. The application serves as a platform to test your Android pentesting skills. The vulnerabilitie...
Breaking the Vault | A Detailed Walkthrough of The RedTeam Capstone Challenge
TryHackMe’s RedTeam Capstone Challenge provides an unparalleled, hands-on experience that simulates real-world hacking scenarios. This challenge tests your skills in network infiltration, vulnerabi...
BlackHatMEA Qualifications 2022 CTF Web Challenges Writeup
Peace be upon all of you, on this writeup I am going to cover the solutions of some web challenges from BlackHatMEA CTF. We have participated under the team 0xCha0s. Jimmy’s Blog Difficulty: Hard...
ASCWGs Qualifications 2022 CTF Web Challenges Writeup
Peace be upon all of you, on this writeup I am going to cover the solutions of all web challenges for Arab Security Cyber Wargames 2022 qualification phase. My team 0xCha0s achieved the 5 place bet...
Hackerone Android Challenges Writeups
Peace be upon all of you, on this writeup I am going to cover the solutions of all android challenges on Hackerone (Thermostat - Intentional Exercise - Oauthbreaker - Webdev). Difficulty: Easy and...
Unrestricted File Upload Leads to SSRF and RCE
Introduction Peace be upon you all, I am going to share with you a vulnerability that I have found almost a year ago and it is remarkable for me because it was the first critical one for me anyway ...
I owe your Request | HTTP Request Smuggling leads to Full Accounts takeover
Introduction Peace be upon you all, this is actually my first writeup which is going to be about a very interesting vulnerability, HTTP Request Smuggling, which I found in a private program, which ...
Cybertalents Space Web Challenge Writeup
Description you might need some space XD. Difficulty: Hard Challenge Link: http://3.126.138.80/catch/http://ec2-35-158-236-11.eu-central-1.compute.amazonaws.com/space/ Solution Exploring Open...
Cybertalents catchMomen Web Challenge Writeup
Description Don’t Try To 3scape From Your Destiny ! Difficulty: Medium Challenge Link: http://3.126.138.80/catch/ Solution Exploring It seems like a normal website for a company. there is on...
Hackerone BugDB challenge Writeup
Peace be upon all of you, on this writeup I am going to cover the solutions of three challenges on Hacekrone related to GraphQL, they have three parts under the name BugDB v1/3. Difficulty: Easy a...