A deep dive into one of the most thrilling web challenges from NahamCon CTF 2025—GraphQL injections, 403 bypasses, heapdump leaks, and more. Introduction Hi everyone! I’m Vikram and I’m back with...

Introduction Hey Everyone! I’m Vikram Sharma, and it’s been a while since I last published a write-up. I’m back with something interesting (I know I’m super late to cover this). We’ll be looking ...

Hi everyone!! I’m Vikram, and welcome back to another interesting write-up. Today, I’m excited to share my experience of discovering a stored and blind XSS on one of NASA’s subdomains. This journey...

Ignite is an easy machine on Tryhackme that focuses on vulnerability discovery and exploitation in FuelCMS, a popular open-source content management system (CMS). It is a PHP-based CMS that provide...