Fast Feed

❯

❯

infosecwriteups

infosecwriteups

Jun 20, 20262 min read

Breaking Down Two Simple Vulnerabilities That Exposed A School’s Admission Records
Jun 19, 11:03 AM
BITSCTF 2026 Writeups | OSINT And Steganography / Forensics Challenges
Jun 19, 11:02 AM
“Bug Bounty Bootcamp #48: OAuth + XSS ”
Jun 19, 11:01 AM
Phone Numbers and Emails to Hidden Subdomains: The OSINT Acquisition Pipeline That Uncovered a…
Jun 19, 10:56 AM
Brave Blue Team Lab (CyberDefenders)
Jun 19, 10:54 AM
CRTA Exam Writeup — Passed | CyberWarFare Labs
Jun 19, 10:54 AM
Web-RTA Exam Writeup — Passed | CyberWarFare Labs
Jun 19, 10:54 AM
VulnHub — sunset: dawn | Full Walkthrough
Jun 19, 10:53 AM
Slort — RFI via PHP allow_url_include + Writable Scheduled Task Binary to Administrator | OffSec PG…
Jun 18, 06:49 AM
“Bug Bounty Bootcamp #47: Account Takeover 101 — How to Steal Everyone’s Account (Legally)”
Jun 18, 06:47 AM
Build an IDOR Vulnerability Lab: Why WHERE Clauses Don’t Protect Your API.
Jun 18, 06:47 AM
BEARCAT CTF 2026 WRITEUPS
Jun 18, 06:46 AM
I almost ordered a product for free. (Business Logic Vulnerability)
Jun 18, 06:46 AM
Building a Hackbot for Bug Bounties — Auth Testing Subagent Setup
Jun 18, 06:45 AM
“Bug Bounty Bootcamp #46: Not Allowed From Your IP?”
Jun 18, 06:45 AM
TryHackMe — Blog CTF | Full Write-Up
Jun 18, 06:43 AM
VulnHub — Shenron: 1 | Full Walkthrough
Jun 18, 06:43 AM
I Pentested a Real CRM System and Found 4 Critical Vulnerabilities — Here’s the Full Attack Chain
Jun 18, 06:43 AM
Host & Network Penetration Testing: Network-Based Attacks CTF 1 — eJPT (INE)
Jun 16, 06:53 AM
The Intelligent Shield. OpenCTI
Jun 16, 06:53 AM

70 items under this folder.

Jun 19, 2026
Breaking Down Two Simple Vulnerabilities That Exposed A School’s Admission Records
Jun 19, 2026
BITSCTF 2026 Writeups | OSINT And Steganography / Forensics Challenges
Jun 19, 2026
“Bug Bounty Bootcamp #48: OAuth + XSS ”
Jun 19, 2026
Phone Numbers and Emails to Hidden Subdomains: The OSINT Acquisition Pipeline That Uncovered a…
Jun 19, 2026
Brave Blue Team Lab (CyberDefenders)
Jun 19, 2026
CRTA Exam Writeup — Passed | CyberWarFare Labs
Jun 19, 2026
Web-RTA Exam Writeup — Passed | CyberWarFare Labs
Jun 19, 2026
VulnHub — sunset: dawn | Full Walkthrough
Jun 18, 2026
Slort — RFI via PHP allow_url_include + Writable Scheduled Task Binary to Administrator | OffSec PG…
Jun 18, 2026
“Bug Bounty Bootcamp #47: Account Takeover 101 — How to Steal Everyone’s Account (Legally)”
Jun 18, 2026
Build an IDOR Vulnerability Lab: Why WHERE Clauses Don’t Protect Your API.
Jun 18, 2026
BEARCAT CTF 2026 WRITEUPS
Jun 18, 2026
I almost ordered a product for free. (Business Logic Vulnerability)
Jun 18, 2026
Building a Hackbot for Bug Bounties — Auth Testing Subagent Setup
Jun 18, 2026
“Bug Bounty Bootcamp #46: Not Allowed From Your IP?”
Jun 18, 2026
TryHackMe — Blog CTF | Full Write-Up
Jun 18, 2026
VulnHub — Shenron: 1 | Full Walkthrough
Jun 18, 2026
I Pentested a Real CRM System and Found 4 Critical Vulnerabilities — Here’s the Full Attack Chain
Jun 16, 2026
Host & Network Penetration Testing: Network-Based Attacks CTF 1 — eJPT (INE)
Jun 16, 2026
The Intelligent Shield. OpenCTI
Jun 16, 2026
The Art of Taking Notes
Jun 16, 2026
Mastery Hunt: Hidden API Endpoints — A Deep Dive into API Bug Bounty Recon & Exploitation
Jun 16, 2026
CAT Reloaded CTF — CATF 2025 — DFIR Challenges
Jun 16, 2026
IEEE Victoris 4.0 — CTF 2025 — Finals DFIR Challenges
Jun 16, 2026
The Crime Blue Team Lab (CyberDefenders)
Jun 16, 2026
Bug Bounty Bootcamp #45: Token?
Jun 16, 2026
TryHackMe — Checkmate | Full Walkthrough
Jun 16, 2026
TryHackMe — Break Out The Cage | Full Write-Up
Jun 15, 2026
My Instructor Said “You Can’t Get a Shell.” I Got Root. — Full Web Pentest Exam Write-Up
Jun 15, 2026
Connectors CTF 2025 — DFIR Challenges
Jun 15, 2026
Silent Breach Lab Writeup (CyberDefenders)
Jun 12, 2026
IEEE Victoris 4.0 — CTF 2025 — Quals DFIR Challenges
Jun 12, 2026
DVWA Cheat Sheet (Low & Medium)
Jun 12, 2026
How I Built a SOAR Automation in Microsoft Sentinel That Responds to Attacks Without a Single Click
Jun 12, 2026
Six levels, one lesson: LLMs cannot keep a secret
Jun 12, 2026
Recovering a Forgotten Password in a Self-Hosted n8n Docker Deployment
Jun 12, 2026
Header Manipulation: Bypasses, Probing, and the Security Audit Nobody Does
Jun 12, 2026
Beyond the Patch: Understanding the SonicWall SSL-VPN MFA Bypass Exposure
Jun 12, 2026
I Simulated an SSH Brute-Force Attack on My Ubuntu Server — Here’s How Fail2Ban Stopped It
Jun 11, 2026
AI Security: explanation to Exploitation || Part 1
Jun 11, 2026
Chaining Stored XSS and CSRF in Typemill CMS: A Deep Dive into Attribute Injection
Jun 11, 2026
How I Built a Burp Extension Efficiently with Claude
Jun 11, 2026
Ramnit Blue Team Lab (CyberDefenders)
Jun 11, 2026
Making A SQLi Lab Is Not Difficult, Build One With Me.
Jun 11, 2026
Analyzing CVE-2026-32743: PX4 MAVLink Buffer Overflow DoS
Jun 11, 2026
Hacking a Fortune 500 Finance Company via Envoy Proxy Misconfiguration
Jun 11, 2026
Hacking Into A Server Through FTP
Jun 11, 2026
Android App Penetration Testing: From APK Decompilation to Runtime Exploitation [Tools and Labs]
Jun 09, 2026
Zero-Click IP Leak in a Privacy Search Engine: Indirect Prompt Injection & Silent Patching
Jun 09, 2026
SolarDisruption Lab Writeup (CyberDefenders)
Jun 09, 2026
Raining Dinosaurs — Storm-2603 Lab Writeup [CyberDefenders]
Jun 09, 2026
I Found the Entire Admin UI of a Live PlatformJust By Tweaking Traffic in Burp Suite
Jun 09, 2026
Host & Network Penetration Testing: System-Host Based Attacks CTF 2 — eJPT (INE)
Jun 09, 2026
How GraphQL Mutation Aliasing Led to a $12,500 DoS Bug in HackerOne’s Account Recovery Flow
Jun 09, 2026
SQL Injection in Password Reset: Full Database, One Email
Jun 09, 2026
LFI Escalation Lab Writeup [CyberDefenders]
Jun 09, 2026
GreyCTF 2026 — Crimewatch Forensics Challenge Writeup
Jun 08, 2026
Applying Sherman Kent’s Analytic Discipline to CTI: A Practical Analyst Guide
Jun 08, 2026
Operation Desert Hydra — AI-Assisted CTI Pipeline: MuddyWater to Kibana
Jun 08, 2026
CTI as a Code: Complete Step-by-Step Methodology
Jun 08, 2026
CTI as a Code in Practice: Reactive Investigation — LifeTech Pharma
Jun 08, 2026
ThreatMapper: I Built a Self-Hosted AI Threat Intelligence Platform — Here’s How to Use It
Jun 08, 2026
OSCP Windows Enumeration Checklist: My Complete Privilege Escalation Workflow for Every Box
Jun 08, 2026
JavaScript Prototype Pollution Deep Dive : — Reconnaissance, Exploitation & Bug Bounty Guideline
Jun 07, 2026
Update: The Ending of My $500 Loss and Web Cache Poisoning Story.
Jun 07, 2026
SPIP RCE + Docker SUID Escape | THM Publisher
Jun 07, 2026
Splunk Exploring SPL: A Practical SOC Analyst Walkthrough for Search, Detection, and Threat Hunting
Jun 07, 2026
How I Hijacked a CTF Platform with Four Lines of Burp Suite Rules
Jun 07, 2026
Sensitive Information Disclosure Through an Exposed File Repository.
Jun 07, 2026
An Introduction to Module Stomping

Created By Quantlight © 2026

GitHub