2023

A Bunch of Web and XSS Challenges
Exploring Various SSR (Server-side rendering) from a Historical Perspective
Analysis of CVE-2023-46729: URL Rewrite Vulnerability in Sentry Next.js SDK
HITCON CTF 2023 and SECCON CTF 2023 Writeup
TIL:img src also supports mp4 (Safari only)
corCTF 2023 & Sekai CTF 2023 Writeup
Math jail - Intigriti 0823 XSS Challenge Author Writeup
GoogleCTF + zer0ptsCTF + ImaginaryCTF 2023 Writeup
EJS Vulnerabilities in CTF
Updating Blog with chatGPT
ReDoS: Attacks using regexp
Android App Reverse Engineering Part 4: Dynamic Analysis with Frida
Android App Reverse Engineering Part 3: Monitoring App Packets
Android App Reverse Engineering Part 2: Modifying Smali Code
Android App Reverse Engineering Part 1: Decompiling and Rebuilding APKs
Preparation Experience for Japan's FE and SG Exams for Zero-Day Japanese Beginners
LINE CTF 2023 Notes
DiceCTF 2023 Notes
Intigriti 0123 Challenge Writeup - Second Order MongoDB JS Injection
Is it meaningful to encrypt passwords when calling APIs on the website frontend?