I write about Hacking, CTFs and other interesting security and programming stuff.
Nothing here yet.
Mar 9 · 5 min read · Recently I came across a relatively lesser known bug bounty platform and decided to hunt on it. While testing the program, I discovered that its JWT-based authentication could be manipulated to gain u
Join discussion
Dec 26, 2025 · 9 min read · If you prefer to read this blog in a static website, I've got the same content over at redtrib3.bearblog.dev. There has been a lot off fuzz lately about this new vulnerability in React and NextJS. All of this seems to be quiet confusing at first but...
Join discussion
Aug 26, 2025 · 10 min read · Introduction I secured first place in the CloudSEK Hiring CTF held in August, 2025. The competition involved 5 challenges of increasing difficulty placed as levels. In this writeup, I’ll outline my methods and thought process. TL;DR Found a google ...
Join discussion
Jul 27, 2025 · 9 min read · This writeup covers the new Threat Hunting simulator room ‘Health Hazard’ rated Easy from Tryhackme. At a high level, the challenge involved going through a splunk log to trace out the attack path, we have all the information needed to complete the c...
XLe commented
Jul 11, 2025 · 18 min read · In this writeup, I’ll be setting up a wazuh server - An Endpoint detection and response (EDR) tool that monitor devices for activity that could indicate a threat. I’ll be doing that in an Active directory environment containing 1 Domain controller an...
Join discussion
