Blog

Blog

Longer notes on security work, learning, and practical writeups outside the CTF archive.

Year
Tags
Content type
Categories
Blog topics
3 / 3 items

Discovering SQL Injections in Joomla with AI-Assisted Research

How a manual SQLi hunt turned into an AI-assisted Joomla audit and multiple assigned CVEs.

2026-06-13 15 min read

Funny Java Strings?

Java Strings are immutable, interned, optimized, and surprisingly easy to misunderstand when secrets are involved. This post digs into String pooling, reflection, Base64 copies, library APIs, and why ...

2026-05-27 9 min read

HTB CPTS

My experience completing the Hack The Box Certified Penetration Testing Specialist (HTB CPTS) certification. I share the journey, rough timeline, exam tips, and tools that helped me succeed.

2026-03-23 8 min read