web

• 2024-11-26 CTFZone 2024 Final — registry

  // exploiting layer naming in Docker container registry

• 2024-09-13 BRICS+ CTF 2024 — villa & mirage & excess

  // writeup for all web challenges from BRICS+ CTF

• 2023-04-26 RuCTF Finals 2023 — stalker

  // exploiting race condition in MariaDB primary keys setup

• 2020-11-30 Russian CTF Cup 2020 — security

  // provide a native engine to openssl using an injection to command arguments