Welcome to my collection of CTF (Capture The Flag) write-ups! This repository contains detailed solutions and analysis for various cybersecurity challenges.
π Live Site: https://chickenloner.github.io/Write_It_UP/
Total Write-ups: 361
π 81 write-up(s) (click to expand)
- [CyberDefenders Write-up] 3CX Supply Chain
- [CyberDefenders Write-up] APT35
- [CyberDefenders Write-up] Acoustic
- [CyberDefenders Write-up] AfricanFalls
- [CyberDefenders Write-up] AndroidBreach
- [CyberDefenders Write-up] Andromeda Bot
- [CyberDefenders Write-up] BankingTroubles
- [CyberDefenders Write-up] BlackEnergy
- [CyberDefenders Write-up] BlueSky Ransomware
- [CyberDefenders Write-up] Brave
- [CyberDefenders Write-up] BumbleSting
- [CyberDefenders Write-up] CorporateSecrets
- [CyberDefenders Write-up] DeepDive
- [CyberDefenders Write-up] DumpMe
- [CyberDefenders Write-up] Eli
- [CyberDefenders Write-up] Emprisa Maldoc
- [CyberDefenders Write-up] EscapeRoom
- [CyberDefenders Write-up] FakeGPT
- [CyberDefenders Write-up] Fog Ransomware
- [CyberDefenders Write-up] GetPDF
- [CyberDefenders Write-up] GhostDetect
- [CyberDefenders Write-up] GoldenSpray
- [CyberDefenders Write-up] GrabThePhisher
- [CyberDefenders Write-up] Hacked
- [CyberDefenders Write-up] Hammered
- [CyberDefenders Write-up] HawkEye
- [CyberDefenders Write-up] HireMe
- [CyberDefenders Write-up] HoneyBOT
- [CyberDefenders Write-up] Hunter
- [CyberDefenders Write-up] IMDSv1
- [CyberDefenders Write-up] IcedID
- [CyberDefenders Write-up] IcedID 2
- [CyberDefenders Write-up] Injector
- [CyberDefenders Write-up] Insider
- [CyberDefenders Write-up] Jailbroken
- [CyberDefenders Write-up] Kerberoasted
- [CyberDefenders Write-up] Lespion
- [CyberDefenders Write-up] MSIXPhish
- [CyberDefenders Write-up] MalDoc101
- [CyberDefenders Write-up] Malicious PyPi
- [CyberDefenders Write-up] MeteorHit
- [CyberDefenders Write-up] Midnight RDP
- [CyberDefenders Write-up] MrGamer
- [CyberDefenders Write-up] MrRobot
- [CyberDefenders Write-up] NintendoHunt
- [CyberDefenders Write-up] NukeTheBrowser
- [CyberDefenders Write-up] Obfuscated
- [CyberDefenders Write-up] Oski
- [CyberDefenders Write-up] PacketMaze
- [CyberDefenders Write-up] PhishStrike
- [CyberDefenders Write-up] Phishy
- [CyberDefenders Write-up] Phobos
- [CyberDefenders Write-up] PoisonedCredentials
- [CyberDefenders Write-up] ProPDF
- [CyberDefenders Write-up] PsExec Hunt
- [CyberDefenders Write-up] QBot
- [CyberDefenders Write-up] RARCVE
- [CyberDefenders Write-up] RE101
- [CyberDefenders Write-up] Ramnit
- [CyberDefenders Write-up] Red Stealer
- [CyberDefenders Write-up] RedLine
- [CyberDefenders Write-up] Reveal
- [CyberDefenders Write-up] Seized
- [CyberDefenders Write-up] ShadowRoast
- [CyberDefenders Write-up] Spotlight
- [CyberDefenders Write-up] SpottedInTheWild
- [CyberDefenders Write-up] Sysinternals
- [CyberDefenders Write-up] Szechuan Sauce
- [CyberDefenders Write-up] T1197
- [CyberDefenders Write-up] TeamSpy
- [CyberDefenders Write-up] The Crime
- [CyberDefenders Write-up] Tomcat Takeover
- [CyberDefenders Write-up] Trigona Ransomware
- [CyberDefenders Write-up] Ulysses
- [CyberDefenders Write-up] UnPackMe
- [CyberDefenders Write-up] Web Investigation
- [CyberDefenders Write-up] WebStrike
- [CyberDefenders Write-up] WireDive
- [CyberDefenders Write-up] XLM Macros
- [CyberDefenders Write-up] Yellow RAT
- [CyberDefenders Write-up] l337 S4uc3
π 12 write-up(s) (click to expand)
- [HackSmarter.org Write-up] Anomaly
- [HackSmarter.org Write-up] Arasaka
- [HackSmarter.org Write-up] BankSmarter
- [HackSmarter.org Write-up] BuildingMagic
- [HackSmarter.org Write-up] MidGarden2
- [HackSmarter.org Write-up] NorthBridge Systems
- [HackSmarter.org Write-up] Odyssey
- [HackSmarter.org Write-up] ShareThePain
- [HackSmarter.org Write-up] Staged
- [HackSmarter.org Write-up] Sysco
- [HackSmarter.org Write-up] Talisman
- [HackSmarter.org Write-up] Welcome
π 16 write-up(s) (click to expand)
- [HTB Write-up] Baby
- [HTB Write-up] BabyTwo
- [HTB Write-up] Breach
- [HTB Write-up] Data
- [HTB Write-up] Forgotten
- [HTB Write-up] Job
- [HTB Write-up] Lock
- [HTB Write-up] Manage
- [HTB Write-up] Media
- [HTB Write-up] Reset
- [HTB Write-up] Retro
- [HTB Write-up] RetroTwo
- [HTB Write-up] Sendai
- [HTB Write-up] Slonik
- [HTB Write-up] Sweep
- [HTB Write-up] VulnEscape
π 52 write-up(s) (click to expand)
- [HTB Sherlocks Write-up] APTNightmare
- [HTB Sherlocks Write-up] APTNightmare-2
- [HTB Sherlocks Write-up] BFT
- [HTB Sherlocks Write-up] BOughT
- [HTB Sherlocks Write-up] Brutus
- [HTB Sherlocks Write-up] Bumblebee
- [HTB Sherlocks Write-up] Campfire-1
- [HTB Sherlocks Write-up] Campfire-2
- [HTB Sherlocks Write-up] Compromised
- [HTB Sherlocks Write-up] Constellation
- [HTB Sherlocks Write-up] CrewCrow
- [HTB Sherlocks Write-up] CrownJewel-1
- [HTB Sherlocks Write-up] CrownJewel-2
- [HTB Sherlocks Write-up] Detroit becomes Human
- [HTB Sherlocks Write-up] Heartbreaker-Continuum
- [HTB Sherlocks Write-up] Heartbreaker-Denouement
- [HTB Sherlocks Write-up] Hyperfiletable
- [HTB Sherlocks Write-up] Jingle Bell
- [HTB Sherlocks Write-up] Jugglin
- [HTB Sherlocks Write-up] Knock Knock
- [HTB Sherlocks Write-up] Litter
- [HTB Sherlocks Write-up] Lockpick
- [HTB Sherlocks Write-up] Logjammer
- [HTB Sherlocks Write-up] Meerkat
- [HTB Sherlocks Write-up] NeuroSync-D
- [HTB Sherlocks Write-up] Noted
- [HTB Sherlocks Write-up] Noxious
- [HTB Sherlocks Write-up] Nubilum-2
- [HTB Sherlocks Write-up] Nuts
- [HTB Sherlocks Write-up] OPTinselTrace24-3 Blizzard Breakdown
- [HTB Sherlocks Write-up] OPTinselTrace24-4 Neural Noel
- [HTB Sherlocks Write-up] OpSalwarKameez24-1 Super-Star
- [HTB Sherlocks Write-up] OpSalwarKameez24-2 Magic-Show
- [HTB Sherlocks Write-up] OpSalwarKameez24-4 Salsa-Dance
- [HTB Sherlocks Write-up] OpTinselTrace-1
- [HTB Sherlocks Write-up] OpTinselTrace-2
- [HTB Sherlocks Write-up] OpTinselTrace-3
- [HTB Sherlocks Write-up] OpTinselTrace-4
- [HTB Sherlocks Write-up] OpTinselTrace-5
- [HTB Sherlocks Write-up] OpTinselTrace24-1 Sneaky Cookies
- [HTB Sherlocks Write-up] Pikaptcha
- [HTB Sherlocks Write-up] Psittaciformes
- [HTB Sherlocks Write-up] Reaper
- [HTB Sherlocks Write-up] ReliableThreat
- [HTB Sherlocks Write-up] RogueOne
- [HTB Sherlocks Write-up] Takedown
- [HTB Sherlocks Write-up] TickTock
- [HTB Sherlocks Write-up] Tracer
- [HTB Sherlocks Write-up] Trent
- [HTB Sherlocks Write-up] Ultimatum
- [HTB Sherlocks Write-up] Unit42
- [HTB Sherlocks Write-up] Unsupervised
π 4 write-up(s) (click to expand)
- [LetsDefend Write-up] EventID 125 - β SOC175 - PowerShell Found in Requested URL - Possible CVE-2022-41082 Exploitation
- [LetsDefend Write-up] EventID 214 - SOC251 - Quishing Detected (QR Code Phishing)
- [LetsDefend Write-up] EventID 257 -β SOC282 - Phishing Alert - Deceptive Mail Detected
- [LetsDefend Write-up] EventID 36 - SOC 104 - Malware Detected
π 71 write-up(s) (click to expand)
- [LetsDefend Write-up] AS-REP Challenge
- [LetsDefend Write-up] Agniane Stealer
- [LetsDefend Write-up] AstasiaLoader
- [LetsDefend Write-up] Batch Downloader
- [LetsDefend Write-up] Brute Force Attacks
- [LetsDefend Write-up] Compromised Chat Server
- [LetsDefend Write-up] Compromised ICS Device
- [LetsDefend Write-up] Compromised Network Printer
- [LetsDefend Write-up] Confluence CVE-2023-22527
- [LetsDefend Write-up] DLL Stealer
- [LetsDefend Write-up] Disclose The Agent
- [LetsDefend Write-up] Discord Forensics
- [LetsDefend Write-up] Downloader
- [LetsDefend Write-up] Email Analysis
- [LetsDefend Write-up] Excel 4.0 Macros
- [LetsDefend Write-up] Golang Ransomware
- [LetsDefend Write-up] Golden Ticket
- [LetsDefend Write-up] Http Basic Auth
- [LetsDefend Write-up] IcedID Malware Family
- [LetsDefend Write-up] ImageStegano
- [LetsDefend Write-up] Infection with Cobalt Strike
- [LetsDefend Write-up] Investigate Web Attack
- [LetsDefend Write-up] Java Shellcode
- [LetsDefend Write-up] Kernel Exploit
- [LetsDefend Write-up] Kimsuky APT Group
- [LetsDefend Write-up] Linux Disk Forensics
- [LetsDefend Write-up] Linux Forensics
- [LetsDefend Write-up] Linux Memory Forensics
- [LetsDefend Write-up] LockBit
- [LetsDefend Write-up] Log Analysis With Sysmon
- [LetsDefend Write-up] MSHTML
- [LetsDefend Write-up] Malicious AutoIT
- [LetsDefend Write-up] Malicious Chrome Extension
- [LetsDefend Write-up] Malicious Doc
- [LetsDefend Write-up] Malicious VBA
- [LetsDefend Write-up] Malicious Web Traffic Analys
- [LetsDefend Write-up] Malicious WordPress Plugin
- [LetsDefend Write-up] Memory Analysis
- [LetsDefend Write-up] NTFS Forensics
- [LetsDefend Write-up] Obfuscated JavaScript
- [LetsDefend Write-up] Obfuscated RAT
- [LetsDefend Write-up] PCAP Analysis
- [LetsDefend Write-up] PDF Analysis
- [LetsDefend Write-up] PDFURI
- [LetsDefend Write-up] PHP-CGI (CVE-2024-4577)
- [LetsDefend Write-up] Phishing Email
- [LetsDefend Write-up] Port Scan Activity
- [LetsDefend Write-up] PowerShell Keylogger
- [LetsDefend Write-up] PowerShell Script
- [LetsDefend Write-up] Presentation As a Malware
- [LetsDefend Write-up] PrintNightmare
- [LetsDefend Write-up] QakBot Malware
- [LetsDefend Write-up] Ransomware Attack
- [LetsDefend Write-up] RegistryHive
- [LetsDefend Write-up] Remote Working
- [LetsDefend Write-up] Revenge RAT
- [LetsDefend Write-up] Serpent Stealer
- [LetsDefend Write-up] Shellshock Attack
- [LetsDefend Write-up] Suspicious Browser Extension
- [LetsDefend Write-up] Suspicious Python Package
- [LetsDefend Write-up] TeamViewer Forensics
- [LetsDefend Write-up] TinyTurla Backdoor
- [LetsDefend Write-up] Upstyle Backdoor
- [LetsDefend Write-up] WannaCry Ransomware
- [LetsDefend Write-up] WinRAR 0-Day
- [LetsDefend Write-up] Windows Memory Dump
- [LetsDefend Write-up] Windows Registry
- [LetsDefend Write-up] Windows Theme Spoofing
- [LetsDefend Write-up] YARA Rule
- [LetsDefend Write-up] cl0p Malware
- [LetsDefend Write-up] macOS Malware
π 72 write-up(s) (click to expand)
- [BTLO Write-up] 1down
- [BTLO Write-up] Aspen
- [BTLO Write-up] BITS
- [BTLO Write-up] Banker
- [BTLO Write-up] Basilisk PT 1
- [BTLO Write-up] Beacon
- [BTLO Write-up] Ben
- [BTLO Write-up] Blocker
- [BTLO Write-up] Breach
- [BTLO Write-up] Brute
- [BTLO Write-up] Countdown
- [BTLO Write-up] Cov
- [BTLO Write-up] Covert
- [BTLO Write-up] Crypto
- [BTLO Write-up] Deep Freeze
- [BTLO Write-up] Dissect
- [BTLO Write-up] DomainNance
- [BTLO Write-up] Enter The Dragon
- [BTLO Write-up] Fingerprint
- [BTLO Write-up] First Day
- [BTLO Write-up] First Week
- [BTLO Write-up] Frontier
- [BTLO Write-up] Fungames
- [BTLO Write-up] Grab
- [BTLO Write-up] HUNT3R
- [BTLO Write-up] Haunted
- [BTLO Write-up] Heaven
- [BTLO Write-up] Hexclave
- [BTLO Write-up] ImpairDefense - Part 1
- [BTLO Write-up] Indicators
- [BTLO Write-up] Insider Brett
- [BTLO Write-up] Insider Threat
- [BTLO Write-up] Insidious
- [BTLO Write-up] JOPPERS
- [BTLO Write-up] Just a Viewer
- [BTLO Write-up] KikiPass
- [BTLO Write-up] Killer
- [BTLO Write-up] Krampus
- [BTLO Write-up] Link
- [BTLO Write-up] Marionette
- [BTLO Write-up] Masquerade
- [BTLO Write-up] MiddleMayhem
- [BTLO Write-up] Mon
- [BTLO Write-up] Monitor
- [BTLO Write-up] Nano
- [BTLO Write-up] Neem
- [BTLO Write-up] Nonyx
- [BTLO Write-up] Noted
- [BTLO Write-up] Ozarks
- [BTLO Write-up] Parcel
- [BTLO Write-up] Photo
- [BTLO Write-up] PikaBoo
- [BTLO Write-up] Plugout
- [BTLO Write-up] Print
- [BTLO Write-up] ProcessWin
- [BTLO Write-up] Replaced
- [BTLO Write-up] Rotten Cloud
- [BTLO Write-up] Sandbox
- [BTLO Write-up] Splunk IT
- [BTLO Write-up] Suspended
- [BTLO Write-up] Take a LAP
- [BTLO Write-up] The Walking Packets
- [BTLO Write-up] Thumbs Up
- [BTLO Write-up] Trend
- [BTLO Write-up] Tux One
- [BTLO Write-up] Typhon
- [BTLO Write-up] UNDRGRND-N3RD
- [BTLO Write-up] Vortex
- [BTLO Write-up] WikiLeaked
- [BTLO Write-up] XHELL
- [BTLO Write-up] You_re Hired!
- [BTLO Write-up] Zeta End
π 33 write-up(s) (click to expand)
- [THM Write-up] APIWizards Breach
- [THM Write-up] Benign
- [THM Write-up] Blizzard
- [THM Write-up] Block
- [THM Write-up] Boogeyman 1
- [THM Write-up] Boogeyman 2
- [THM Write-up] Boogeyman 3
- [THM Write-up] Carnage
- [THM Write-up] Dead End_
- [THM Write-up] Disgruntled
- [THM Write-up] Disk Analysis & Autopsy
- [THM Write-up] DiskFiltration
- [THM Write-up] Diskrupt
- [THM Write-up] ExfilNode
- [THM Write-up] Hunt Me I Payment Collectors
- [THM Write-up] Investigating with Splunk
- [THM Write-up] IronShade
- [THM Write-up] ItsyBitsy
- [THM Write-up] Juicy Details
- [THM Write-up] Memory Forensics
- [THM Write-up] New Hire Old Artifacts
- [THM Write-up] PS Eclipse
- [THM Write-up] ParrotPost Phishing Analysis
- [THM Write-up] Phishing Analysis Tools (Case 1-3)
- [THM Write-up] REvil Corp
- [THM Write-up] Retracted
- [THM Write-up] Secret Recipe
- [THM Write-up] Slingshot
- [THM Write-up] Snapped Phish-ing Line
- [THM Write-up] Tardigrade
- [THM Write-up] Tempest
- [THM Write-up] The Greenholt Phish
- [THM Write-up] Unattended
π 11 write-up(s) (click to expand)
- CyGenixCTF Write-up
- Cyber Range Thailand 2024 (Qualifier)
- Cyber Range Thailand 2024 [Final] - Review
- CyberSpaceCTF 2024 - Memory (Forensic Challenge) -
- CyberSpaceCTF 2024 - Social Distancing (Forensic)
- SECPlayground Bloody Xmas2024 CTF - [Incident & Rev - Wowza]
- SECPlayground Hackloween CTF 2024 [Log Analysis & Incident write-up - R@b!T_T]
- SECPlayground Hackloween CTF 2025 Digital Forensics
- THCTT2024 - Network_Forensic_Mobile - MaAowHa
- THCTT2024 - Reverse_Crypto_Programming - MaAowHa
- n00bz CTF 2024 Write-up (ByTheW4y Team)
π 3 write-up(s) (click to expand)
π 6 write-up(s) (click to expand)
This repository contains my personal write-ups for various CTF challenges and cybersecurity labs from platforms including:
- π― TryHackMe
- π HackTheBox
- π‘οΈ LetsDefend
- π CyberDefenders
- π Security Blue Team
- 𧩠And more...
- Browse the live site for a better reading experience
- Or navigate through the folders above to read the markdown files directly on GitHub
These write-ups are for educational purposes only. Please respect the platforms' rules and guidelines.
Last updated: Auto-generated by GitHub Actions