🔐 DSA Exploitation – Digital Safety Annex

How predictable nonce generation in DSA led to full key recovery and flag access in a cryptographic CTF challenge.

Read more →

🧠 Desires – Session Hijack via Zip Slip

Combining CVE-2024-0406 with session prediction and flawed auth logic to gain admin access.

Read more →

🐍 HTB Code – Python Sandbox Escape

From blacklist bypass to path traversal via jq, this write-up shows a full box compromise using Python introspection.

Read more →