Posts
Muhammad Adel
Cancel

HexTree Attack Surface Android App Solutions

Introduction Peace be upon all of you. In this post I am going to share all the solutions for the Attack Surface Android app, which is part of the amazing Hextree Android Application Security cour...

Walkthrough of The InsecureShop Android Vulnerable Application

Introduction InsecureShop is an Android application that is designed to be intentionally vulnerable. The application serves as a platform to test your Android pentesting skills. The vulnerabilitie...

Breaking the Vault | A Detailed Walkthrough of The RedTeam Capstone Challenge

TryHackMe’s RedTeam Capstone Challenge provides an unparalleled, hands-on experience that simulates real-world hacking scenarios. This challenge tests your skills in network infiltration, vulnerabi...

BlackHatMEA Qualifications 2022 CTF Web Challenges Writeup

Peace be upon all of you, on this writeup I am going to cover the solutions of some web challenges from BlackHatMEA CTF. We have participated under the team 0xCha0s. Jimmy’s Blog Difficulty: Hard...

ASCWGs Qualifications 2022 CTF Web Challenges Writeup

Peace be upon all of you, on this writeup I am going to cover the solutions of all web challenges for Arab Security Cyber Wargames 2022 qualification phase. My team 0xCha0s achieved the 5 place bet...

Hackerone Android Challenges Writeups

Peace be upon all of you, on this writeup I am going to cover the solutions of all android challenges on Hackerone (Thermostat - Intentional Exercise - Oauthbreaker - Webdev). Difficulty: Easy and...

Unrestricted File Upload Leads to SSRF and RCE

Introduction Peace be upon you all, I am going to share with you a vulnerability that I have found almost a year ago and it is remarkable for me because it was the first critical one for me anyway ...

I owe your Request | HTTP Request Smuggling leads to Full Accounts takeover

Introduction Peace be upon you all, this is actually my first writeup which is going to be about a very interesting vulnerability, HTTP Request Smuggling, which I found in a private program, which ...

Cybertalents Space Web Challenge Writeup

Description you might need some space XD. Difficulty: Hard Challenge Link: http://3.126.138.80/catch/http://ec2-35-158-236-11.eu-central-1.compute.amazonaws.com/space/ Solution Exploring Open...

Cybertalents catchMomen Web Challenge Writeup

Description Don’t Try To 3scape From Your Destiny ! Difficulty: Medium Challenge Link: http://3.126.138.80/catch/ Solution Exploring It seems like a normal website for a company. there is on...