← k33w3.com
/var/log/writeups // 2 entries

Writeups

CTF solutions, vulnerability research, and technical investigation logs.

Oct 26, 2025

SunshineCTF 2025: Lunar Shop — SQL Injection Writeup

Extracting the flag from a vulnerable product catalog using a UNION-based SQL injection in the 'product_id' parameter, without fuzzing or brute forcing.

Web / SQLi10 pts
Oct 26, 2025

SunshineCTF 2025: Remotely Interesting — Forensics Walkthrough

Memory forensics on a Desktop Window Manager (dwm.exe) dump to reconstruct what a victim saw during a suspected RDP compromise.

Forensics490 pts