Hello everyone, in here we are going to discuss the solutions for the web challenges of this CTF orgnized by cybertalents and TrendMicro. we as “ScriptKiddies” team scored the first place with 825 points.

Hello @everyone 😅 here is a writeup for a bug reported to one of bug bounty programs. the bug targeted XML parsers and it allows for server resources exhaustion leading to complete denial of service.

I’m going to share this concise writeup for a bug reported to one of bug bounty programs on hackerone

Challenge Name: Read Cache Category: Web Points: 300 Description: this social network is using redis as cache database, and they hide the flag in it http://35.188.196.153/readcache/ Writeup:

Challenge Name: API Category: Web Points: 200 Description: this is the url to flag, only admin can view it, can you get it ? http://35.193.45.56/api/api.php?version=2&action=flag Writeup: