Python

Huntress CTF 2024 PyYAML, ZipSlip, SQLi to pickleRCE, Timing Attack

TBTL CTF 2024 indexedDB, LFI, CSV, Boolean-based Neo4j Injection

b01lers CTF 2024 Bash jails, Blind XSS & CMD injection, etc.

cakeCTF 2023 - web/CountryDB SQLi through length validation

Hack the Boo 2023 Basic SSRF and Go SSTI + LFI

HSCTF10 - web/Very Secure Brute-force flask token, Lack of complexity