Posts tagged with "Web Exploitation" | chjwoo

HTB University 2025: Tinsel Trouble Writeup

This is my writeup for the HTB University 2025: Tinsel Trouble event.

c chjwoo
December 22, 2025
22 min read

# CTF # Writeup # Reverse Engineering # Web Exploitation # Binary Exploitation
Daily AlpacaHack: 🐈

This is my write up solving daily challenge from AlpacaHack

c chjwoo
December 16, 2025
3 min read

# Web Exploitation # AlpacaHack # Writeup
Daily AlpacaHack: Emojify

This is my write up solving daily challenge from AlpacaHack

c chjwoo
December 3, 2025
9 min read

# Web Exploitation # AlpacaHack # Writeup
HackTheBox Knife Walkthrough

Knife is an easy Linux machine on HackTheBox that involves exploiting a backdoor in PHP 8.1.0-dev to gain initial access, followed by privilege escalation to root using a misconfigured sudo permission on the knife binary. This walkthrough covers reconnaissance, exploitation, and privilege escalation steps.

c chjwoo
October 30, 2025
13 min read

# PHP # Web Exploitation
HackTheBox Bashed Walkthrough

Bashed is an easy Linux machine on HackTheBox that involves exploiting a web application vulnerability to gain initial access, followed by privilege escalation to root. This walkthrough covers reconnaissance, exploitation, and privilege escalation steps.

c chjwoo
October 14, 2025
4 min read

# Command Injection # Web Exploitation
HackTheBox BountyHunter Walkthrough

BountyHunter walkthrough focusing on exploiting an XXE vulnerability in a bug reporting form to achieve Remote Code Execution (RCE) and privilege escalation to root.

c chjwoo
February 16, 2025
10 min read

# XXE Injection # Web Exploitation
HackTheBox Cap Walkthrough

Cap is an easy Linux machine that runs an HTTP server with administrative functions including network capturing. Improper access control leads to Insecure Direct Object Reference (IDOR) allowing access to other users.

c chjwoo
February 9, 2025
6 min read

# Digital Forensics # IDOR # Web Exploitation