Somnath DasRedis-injection ft. ioredis.zadd()This article covers the Redis-injection in a challenge of corCTF 2024 where in-validated input is combined with the usage of a critical…Jul 291Jul 291
Somnath Dasreq.query and its consequences — Javascript QuirksThis article covers a few anomalies while parsing query in Express.js that I encountered while solving a challenge from Anveshanam CTF…Jul 3Jul 3
Somnath DasSerialFlow — HackTheBox — Cyber Apocalypse 2024SerialFlow is a “web exploitation” challenge that was featured in HTB’s Cyber Apocalypse 2024 CTF.Mar 14Mar 14
Somnath Dasnew-housing-portal (web)-write-up— LACTF-2024A write-up on “new-housing-portal” by r2uwu2 challenge featured in LACTF-2024 in the category of “web”.Feb 19Feb 19
Somnath DasIntroduction to RESP (Redis Serialization Protocol )A practical introduction to Redis Serialization Protocol (RESP) to be able to communicate with any Redis-server without using a…Aug 24, 2023Aug 24, 2023
Somnath DasSau — Hack The Box — Write-upA quick but comprehensive write-up for Sau — Hack The Box machine.Aug 1, 2023Aug 1, 2023
Somnath DasSetup Matrix Synapse Home-serverComplete Beginner’s Guide to set-up Matrix Synapse Home-server along with allowing user registration through clients and other…Jun 18, 20231Jun 18, 20231