Introduction: Hi everyone! This is my writeup for Timelapse box from HackTheBox. For initial access, we have to enumerate SMB for a password protected ZIP file which stores a password protected PFX file. Cracking the zip file and PFX password, we will have to generate a public private key pair to…

This lab explains the basic dom based XSS. First, starting the lab, we get the following page which has search field.

The lab task is very basic. Starting the lab we get the following page which has search field. According to task description, it’s vulnerable.

Introduction: Cyber Apocalypse was an intermediate to expert level, 5 days CTF hosted by HackTheBox. It had around 60+ challenges divided into 7 categories. I was able to solve total of 8 challenges from different categories. The previous writeup i did was for web challenges (Read it here). …

Introduction: Cyber Apocalypse was an intermediate to expert level, 5 days CTF hosted by HackTheBox. It had around 60+ challenges divided into 7 categories. I was able to solve total of 8 challenges from different categories. This writeup is for the 4 web challenges that i solved. There’s another writeup which…

Lab Challenge:

Introduction: Dev Day CTF was held at FAST university, Karachi, in which our team Plugins secured third place while submitting all the flags. Challenges were divided into four categories and each category had four challenges varying in difficulty from easiest to hard. The four categories were: Web Exploitation Steganography Cryptography Reverse…