Advanced Persistent Threats (APTs) are among the most sophisticated forms of cyber adversaries. They are typically state-sponsored or…

Today, I solved another challenge on Bugforge, targeting a web application called Sokudo.

Bug Bounty is a super competitive field and if you want to stay ahead of other hunters, you need to seriously know what to look for…

بسم الله الرحمن الرحيم…وَقُل رَّبِّ زِدْنِى عِلْمًۭ

The SSTI vulnerability in the Preferred name

Between December 2025 and January 2026, a month-long intrusion campaign against Mexican government infrastructure demonstrated how frontier…

It started, as most terrible discoveries do, with a suspicious email. This one was polished and professional. It had branding and it had a…

Install

Topic: Mobile Security

An analysis of insecure Electron configuration leading to local code execution.

So you’ve decided to jump into the world of cybersecurity because the demand is skyrocketing (as they always say and I think it’s…

Wizer hosts CTF challenges on https://wizer-ctf.com and we’ll be looking at #61 today. Like most of the challenges, this one is based on…

🎯 Overview

Hello, stranger — let’s begin.

Thick Client Application Security Testing

Difficulty: Easy | Tags: FTP, LFI, SSH, Privilege Escalation

This walkthrough documents my journey to completing the Offensive Security Intro room and serves as a guide for you! #win-win

Fighting AI with AI

We learned that ethical hacking is not about breaking systems for harm, but about protecting digital environments by identifying weaknesses before attackers exploit them. Understanding the hacker …