//writeups & research
blog
HTB: Silentium — API Info Disclosure to Flowise MCP RCE
A staging API leaks password-reset tokens through an information-disclosure flaw, handing us credentials to a Flowise instance. From there, a server-side JavaScript injection in the MCP endpoint delivers RCE inside a Docker container, and leaked environment credentials pivot us all the way to root.
May 14, 2026
HTB: CCTV — Blind SQLi to Dual RCE
Two CVEs, one box. We exploit a blind SQL injection in ZoneMinder to get credentials, pivot to a hidden motionEye service via SSH port forwarding, then land root through an authenticated RCE.
April 7, 2026
Wfuuz Tutorial
Wfuuz helps find and fix security vulnerabilities.
January 15, 2025
Understanding the HTTP Protocol
Exploring HTTP fundamentals: stateless protocol, versions, communication flow.
December 1, 2024
TryHackMe - Simple CTF Walkthrough
Step-by-step walkthrough of the Simple CTF room on TryHackMe
October 7, 2024
Metasploit Tutorial 1
Metasploit helps find and fix security vulnerabilities.
September 27, 2024