Menu IconMenu Icon
Minimize
Maximize
Close
Timeline

Timeline

Security research, CVEs, bug bounties, certificates, achievements, blog posts, and CTF writeups ordered by date.

Year
Filters
Recognition
Content type
Topics, projects, and sources
45 / 45 items

  • 2026

    17 items
    • Firedancer v1.0 audit competition (TBA) Firedancer v1.0 audit competition
    • Firedancer bug bounty finding (TBA) Firedancer
    • SuiteCRM advisory #1 (TBA) SuiteCRM
    • SuiteCRM advisory #2 (TBA) SuiteCRM
    • Authenticated blind SQL injection in com_finder Authenticated blind SQL injection in Joomla com_finder. Joomla CMS
    • Authenticated blind SQL injection in com_tags Authenticated blind SQL injection in Joomla com_tags. Joomla CMS
    • Privilege escalation through com_users batch task Privilege escalation through the Joomla com_users batch task. Joomla CMS
    • xmalloc All of our slot machines switched from using the very insecure libc heap implementation to something much more secure internally. Surely this new heap implementation is unbreakable :D KITCTF
    • Authenticated blind SQL injection in PropertyTypeEditor.php Authenticated blind SQL injection in PropertyTypeEditor.php. ChurchCRM
    • Authenticated SQL injection in MemberRoleChange.php Authenticated SQL injection in MemberRoleChange.php. ChurchCRM
    • Authenticated blind SQL injection in EventNames.php Authenticated blind SQL injection in EventNames.php. ChurchCRM
    • Authenticated blind SQL injection in PropertyAssign.php Authenticated blind SQL injection in PropertyAssign.php. ChurchCRM
    • Authenticated blind SQL injection in SettingsIndividual.php Authenticated blind SQL injection in SettingsIndividual.php. ChurchCRM
    • Authenticated blind SQL injection in SettingsUser.php Authenticated blind SQL injection in SettingsUser.php. ChurchCRM
    • Second-order SQL injection via FundRaiserEditor.php Second-order SQL injection via FundRaiserEditor.php. ChurchCRM
    • HTB CPTS My experience completing the Hack The Box Certified Penetration Testing Specialist (HTB CPTS) certification. I share the journey, rough timeline, exam tips, and tools that helped me succeed. Certificate
    • Hack The Box Certified Penetration Testing Specialist Completed the HTB CPTS path and passed the practical exam on the first attempt. Certification

  • 2025

    20 items
    • KITCTF #3 at GlacierCTF 2025 #3 at GlacierCTF. KITCTF
    • FluxKITtens at Hackceler8 2025 Participated in Hackceler8 as the FluxKITtens merger team (FluxFingers and KITCTF). KITCTF
    • My Flask App I created a Web application in Flask, what could be wrong? SEKAICTF
    • Fancy Web The Ministry of Information and Communications Technology of Konoha has recently launched their new official website. While it appears to be a standard government portal showcasing public services and announcements, our intelligence sources have indicated that this WordPress-based website contains hidden information that could expose corruption and human rights violations. The website features a unique table processing system that displays various government data, but our analysts suspect that the developers have hidden sensitive information within the table structures themselves. The site's administrators are known for their sophisticated obfuscation techniques, making it difficult to distinguish between legitimate public data and concealed evidence. Your mission is to investigate this website and uncover the hidden information by looking beyond the surface-level content and examining how the tables are processed and displayed - the truth might be hidden, waiting for someone with the right skills to reveal it. SEKAICTF
    • Smile at me Be careful, others might be able to find out your most sacred secrets! (Flag only consists of emojis surrounded by 'GPNCTF{...}') The remote instance is not deployed via Docker-compose but plain Docker, resulting in the bot URL to be 'localhost:3000' instead of 'bot_service:3000' and the challenge server being 'localhost:9222' instead of 'challenge_service:9222'. GPNCTF
    • FluxKITtens #6 at Google CTF 2025 #6 at Google CTF as the FluxKITtens merger team (FluxFingers and KITCTF), qualifying for the finals in Mexico. KITCTF
    • Smile at me Web challenge about URL parser differentials, strict CSP, and an XS-Leak using Scroll-to-Text Fragment behavior with lazy-loaded images. GPNCTF 2025
    • DHM 2025 participation Participated in the DHM finals after qualifying through CSCG. DHM
    • Leaf I always think leaf ~= tea. Please allow remote to have some time to boot the browser. SMILEYCTF
    • Everyone loves canteen food Welcome to the canteen's online menu, where you can check out the daily specials and their prices. But is everything as appetizing as it seems? CSCG
    • vidplow We recently stumbled upon an exposed SVN server of a large multimedia corporation, containing some of their backend application and internal tooling code. However, the access keys seem to not be the ones used in production - the real ones should fetch us quite a high price though, if we manage to get our hands on them that is. Just one problem - the tech stack seems to be really obscure, and no one on our team seems to have any clue what the heck is going on. Can you take a look, and maybe find some vulnerabilities in this thing? CSCG
    • KDF dream We've managed to insert ourselves into a secure channel between two covert agents, however we overplayed our hand and they have become suspicious that their channel is compromised. Realising that there is no way to restablish trust over the compromised network, Alice called for them to carry out a NIST Certified KDF protocol to generate a symmetric OTP, and then for them to use this to encrypt a physical message at a dead drop location. We want to control the message she leaves, can you influence their conversation to control what Bob reads at the dead drop? CSCG
    • CSCG 2025 top 10 global Qualified for DHM again and finished top 10 globally. CSCG
    • Air smeller I found this website where you can rate the smell of the air, after purification. Do you know a good purifier, maybe you can recommend some purifier to the people. CSCG
    • Fantastic Doom Doctor Doom, the monarch of Latveria has made many doombots. You working with the Fantastic 4 have to access doombot machine and foil his plans of releasing doombots. EHAX
    • Cash Memo I have a really hard time managing my cash, am afraid someone might steal my memos... EHAX
    • KITCTF #3 at SwampCTF 2025 #3 at SwampCTF. KITCTF
    • Tar boom Within the Louvre Museum's intranet, there is a service that allows trusted users to upload .tar files and view their content. However, this service has been exploited by a hacker. He was able to retrieve crucial information about the Louvre's security, hidden within the flag.txt. DVCTF
    • Gamedev You've heard of rogue-likes, but have you heard of heap-likes? LACTF
    • A Minecraft Movie I...AM STEVE! UMDCTF

  • 2024

    8 items
    • KITCTF at SnakeCTF 2024 finals Participated in the SnakeCTF finals in Italy. KITCTF
    • KITCTF #3 at GlacierCTF 2024 #3 at GlacierCTF, qualifying for DHM 2025 as KITCTF team. KITCTF
    • CORS Playground Perplexed by CORS? Our CORS Playground is your ideal solution. This intuitive and sleek platform lets you effortlessly learn and experiment with CORS policies. Perfect for unraveling the complexities of secure cross-origin requests. Dive in and clarify your CORS concepts! FCSC
    • DHM 2024 #1 Placed #1 at the Deutsche Hacking Meisterschaft. DHM
    • Hoster You gained access to a Linux server. Can you also gain privileges? CSCG
    • Photoeditor Recently I learned ASP .NET Core and boy, it's so magic! Dependency injection, dynamic routing, interfaces everywhere. But for me, it wasn't dynamic enough. So I extended the framework and now I got all the dynamic in the world I could wish for. That surely didn't introduce any vulnerabilities, right?", CSCG
    • CSCG 2024 DHM qualification Qualified for DHM through CSCG. CSCG
    • KITCTF #1 at SwampCTF 2024 #1 at SwampCTF. KITCTF