blog

writeups, notes, and whatever i find interesting.

• 2026-05-13HackTheBox — GettingStarted WriteupA walkthrough of the GettingStarted machine — covering recon, exploiting a vulnerable CMS, and a sudo misconfiguration for root.ctf, hackthebox
• 2026-04-26CORS-misconfiguration-scannerA custom Python script to search for misconfigured CORS headers.blog, tools
• 2026-04-02Hello WorldFirst post — what this blog is about and what to expect.blog
• 2026-03-15Nmap Quick ReferenceCommon Nmap flags and scan types I use in CTFs and recon.notes, tools