All Posts
60 posts published
Week 22 - 2026
Learning Math and setting up this cool new blog site
Week 21 - 2026
Attending another local cybersec meetup and learning C.
Week 20 - 2026
Finishing the third CWEE module and attending my local cybersec meetup.
Week 19 - 2026
Finally done with college.
Week 18 - 2026
A late update.
Week 17 - 2026
Learning git and starting CWEE prep
Git & GitHub Cheatsheet
A comprehensive Git and GitHub cheatsheet covering everything from setup to advanced features like bisect, worktrees, and interactive rebase.
Week 16 - 2026
Spending half my paycheck on a new SSD and learning git.
Week 15 - 2026
Spending my 23rd Birthday fixing Windows fuck ups and wasting a weekend after getting drunk asf...
Week 14 - 2026
BSCP done, busy with internship. So much to do, so little time...
My BSCP experience - tips and tricks
My journey from web security noob to passing Portswigger's BSCP certification, with practical exam tips and lessons learned.
Week 13 - 2026
Failing BSCP, then passing (sort of)
Week 12 - 2026
I couldn't attempt the BSCP lol
Walkthrough - Prototype Pollution Portswigger labs
An intro to Prototype Pollution vulnerabilities and walkthrough of all 10 portswigger labs
Week 11 - 2026
Completing 100% of portswigger
Walkthrough - JWT Attacks Portswigger labs
An intro to JWT Attacks vulnerabilities and walkthrough of all 8 portswigger labs
Walkthrough - OAuth Authentication Portswigger labs
An intro to OAuth Authentication vulnerabilities and walkthrough of all 6 portswigger labs
Week 10 - 2026
2 more topics to go
Walkthrough - HTTP Request Smuggling Attacks Portswigger labs
An intro to HTTP Request Smuggling vulnerabilities and walkthrough of all 22 portswigger labs
Week 9 - 2026
90% Portswigger done
Walkthrough - HTTP Host Header Attacks Portswigger labs
An intro to HTTP Host Header Attacks vulnerabilities and walkthrough of all 7 portswigger labs
Week 8 - 2026
80% Portswigger done
Walkthrough - Web Cache Poisoning Portswigger labs
An intro to Web Cache Poisoning vulnerabilities and walkthrough of all 13 portswigger labs
Week 7 - 2026
6 topics left until Portswigger is done for good
Walkthrough - SSTI Portswigger labs
An intro to SSTI vulnerabilities and walkthrough of all 7 portswigger labs
Walkthrough - GraphQL API vulnerabilities Portswigger labs
An intro to GraphQL API vulnerabilities and walkthrough of all 5 portswigger labs
Week 6 - 2026
Starting advanced topics on portswigger
Walkthrough - Web LLM Attacks Portswigger labs
An intro to Web LLM Attacks and walkthrough of all 4 portswigger labs
Walkthrough - Insecure Deserialization Portswigger labs
An intro to Insecure Deserialization and walkthrough of all 10 portswigger labs
Walkthrough - Clickjacking, DOM-based Vulnerabilities, and WebSockets labs
Client-side vulnerabilities walkthrough - Clickjacking, DOM-based XSS, and WebSockets
Week 5 - 2026
Finishing Client Side vulnerabilities and more
Week 4 - 2026
Start of BSCP Prep
Walkthrough - CSRF & CORS Portswigger labs
A comprehensive guide to CSRF and CORS vulnerabilities with walkthroughs of all 15 Portswigger labs
Week 3 - 2026
We are so back! or are we...?
Week 2 - 2026
My laptop died bro
Week 1 - 2026
Update 1 week into this year
Week 0 - 2026
Plans for this year, goals and stuff to learn
Walkthrough - Web Cache Deception Portswigger labs
A comprehensive guide to web cache deception vulnerabilities with walkthroughs of all 5 Portswigger labs
Walkthrough - API Testing Portswigger labs
A comprehensive guide to API testing vulnerabilities with walkthroughs of all 5 Portswigger labs
Walkthrough - NoSQL Injection Portswigger labs
A comprehensive guide to NoSQL injection vulnerabilities with walkthroughs of all 4 Portswigger labs
Walkthrough - XXE Portswigger labs
A comprehensive guide to XML External Entity (XXE) vulnerabilities with walkthroughs of all 9 Portswigger labs
Walkthrough - SSRF Portswigger labs
A comprehensive guide to Server-Side Request Forgery vulnerabilities with walkthroughs of all 7 Portswigger labs
Walkthrough - Race Condition Vulnerabilities Portswigger labs
A comprehensive guide to race condition vulnerabilities with walkthroughs of all 6 Portswigger labs
Walkthrough - File Upload Portswigger labs
An intro File Upload Vulnerabilities and walkthrough of all 7 portswigger labs
Walkthrough - Information Disclosure Portswigger labs
An intro to Information Disclosure Vulnerabilities and walkthrough of all 5 portswigger labs
Walkthrough - Access Control Vulnerabilities Portswigger labs
An intro to Access Control Vulnerabilities and walkthrough of all 13 portswigger labs
Walkthrough - Business Logic Vulnerabilities Portswigger labs
An intro to Business Logic Vulnerabilities and walkthrough of all 12 portswigger labs
Walkthrough - OS Command Injections Portswigger labs
An intro to OS Command Injection and walkthrough of all 6 portswigger labs
Walkthrough - Path Traversal Portswigger labs
An intro to Path Traversal and walkthrough of all 6 portswigger labs
Walkthrough - Authentication Vulnerabilities Portswigger labs
An intro to Authentication Vulnerabilities and walkthrough of all 14 portswigger labs
Walkthrough - SQLi Portswigger labs
An intro to SQL injection and walkthrough of all 18 portswigger labs
I am ditching the OSCP for a better path
A brief post on why I am ditching the OSCP and what I will be doing instead
A detailed guide to Reporting for the CPTS with sysreptor
A step by step guide of how I approached reporting for CPTS and passed in the first attempt
My CPTS experience - tips and tricks
My journey from beginner to passing HTB's CPTS certification, with practical exam tips and lessons learned.
Week 3 of my OSCP preparation
Passing the CPTS, an existential crisis and burnout
Week 2 of my OSCP preparation
Another week of waiting for my CPTS results and solving XSS labs
Walkthrough - XSS Portswigger labs
An intro to Cross Site Scripting and walkthrough of all 30 portswigger labs
Week 1 of my OSCP preparation
Where have I been? Update on the CPTS journey, and the start of the OSCP journey
Footprinting theory + cheatsheet
Footprinting common services
NMAP commands + cheatsheet
A detailed cheatsheet for using Nmap in penetration testing.