Blog

Insights on penetration testing, bug bounties, and offensive security

Jan 9, 20213 min read

Simple XSS Using Alert Obfuscation

A write-up on finding a Cross-Site Scripting vulnerability using an alert obfuscation payload to bypass RegEx filters.

Dec 21, 20202 min read

Getting Started with Go

A beginner-friendly introduction to Go - covering the basics of printing, comments, integers, arithmetic operations, and string concatenation.

GoProgramming

Oct 17, 20202 min read

Brooklyn Nine Nine - TryHackMe Walkthrough

A step-by-step walkthrough of the TryHackMe Brooklyn Nine Nine room - covering FTP enumeration, SSH brute-forcing with Hydra, and privilege escalation via less.

TryHackMeCTFWrite-Up

Jul 31, 20202 min read

Bounty Hacker - TryHackMe Walkthrough

A step-by-step walkthrough of the TryHackMe Bounty Hacker room - covering FTP enumeration, SSH brute-forcing with Hydra, and privilege escalation via tar.

TryHackMeCTFWrite-Up

Jun 26, 20202 min read

WebAppSec 101 - TryHackMe Walkthrough

A walkthrough of the TryHackMe WebAppSec 101 room - covering Apache enumeration, default credential testing, cookie manipulation, and IDOR exploitation.

TryHackMeCTFWrite-UpWebApplication