SSTI (TryHackMe)
Server-Side Template Injection (SSTI) is one of those vulnerabilities that looks deceptively simple on the surface but can escalate to full remote code execution faster than most people expect. In thi
Mar 14, 202611 min read21
Command Palette
Search for a command to run...
#curl
Articles tagged with #curl
Surfer - SSRF (TryHackMe)
Introduction: Web app with hidden internal pages. The challenge mentions an SSRF vulnerability. Goal: Access restricted admin functionality. What You Did: Login with default creds (admin/admin) Found export2pdf.php endpoint that accepts URLs Explo...
Jan 30, 20264 min read3
Exploitation with cURL - Hoperation Eggsploit (TryHackMe) ๐งโ๐๐
After twenty-three days of exploits, investigations, and saving Wareville from disaster, Advent of Cyber reaches its final challenge. There are no flashy tools left. No browser. No Burp Suite. Just a terminal, raw HTTP, and the skills weโve built thr...
Dec 29, 202510 min read18