writeup
2024 Hack The Boo: Waywitch
Exploit JWT authentication bypass and token manipulation in a Node.js web application
#htb
#ctf
#web
+3 writeup
2024 Cyber Apocalypse: KorpTerminal
Exploit SQL injection to retrieve credentials and login
#htb
#ctf
#web
+2 writeup
2023 Cyber Apocalypse: Didactic Octo Paddle
Exploit IDOR and JWT vulnerabilities in shopping application
#htb
#ctf
#web
+3 writeup
2022 Hack The Boo: Cursed Party
JWT authentication bypass through XSS to steal admin session and access flag
#htb
#ctf
#web
+5