Posts
All the articles I've posted.
-
Ghost Whisper - Command Injection via Unicode Normalization
Writeup for the Ghost Whisper challenge on YesWeHack demonstrating a Command Injection vulnerability via Unicode normalization bypass.
-
AppSecMaster - Blind XSS to Privilege Escalation
Writeup documenting a Blind XSS vulnerability in a mini blog application from AppSecMaster, leading to privilege escalation.
-
JinjaCare - Server-Side Template Injection
Writeup for the Very Easy JinjaCare HTB Challenge demonstrating Server-Side Template Injection in Jinja2.
-
Cybersecurity Learning Resources
A curated collection of resources, tools, and guides for aspiring security researchers and bug bounty hunters.