// project: ctf & labs

CTF Lab & Writeups

Hands-on capture-the-flag practice across HackTheBox and TryHackMe, building real offensive and defensive skills through structured challenges. Every technique, tool, and lesson learned gets documented in the SecOps-Vault.

Platforms
๐ŸŸฉ
HackTheBox
Industry-standard penetration testing labs. Retired machines, active challenges, and Pro Labs covering real-world attack scenarios and CVEs.
๐ŸŸฅ
TryHackMe
Guided learning paths and structured rooms covering fundamentals through advanced topics. Ideal for building foundational skills before moving to HTB.
CTF Categories
๐ŸŒ
Web
SQL injection, XSS, SSRF, authentication bypass, directory traversal, and API security. OWASP Top 10 as the core framework.
Burp Suitecurl OWASP ZAPNikto
๐Ÿ”ฌ
Forensics
Memory analysis, disk imaging, log analysis, network packet inspection, and file carving. Recovering artifacts from compromised systems.
VolatilityWireshark Autopsybinwalk
๐Ÿ”‘
Cryptography
Cipher analysis, hash cracking, encoding schemes, RSA weaknesses, and weak key identification. Breaking encryption without the key.
HashcatJohn CyberChefPython
๐Ÿ•ต๏ธ
OSINT
Open-source intelligence gathering: usernames, email addresses, geolocation, metadata extraction, and social media footprinting.
MaltegotheHarvester ShodanExifTool
โš™๏ธ
Reverse Engineering
Binary analysis, disassembly, decompilation, and understanding compiled code without source. Identifying malware behavior and hidden logic.
Ghidrastrings ltracestrace
๐Ÿ’ฅ
Pwn / Exploitation
Binary exploitation, buffer overflows, format string vulnerabilities, and return-oriented programming (ROP). Low-level vulnerability exploitation.
pwntoolsGDB pedachecksec
Writeup Methodology
01
Recon: enumerate the target. Nmap service scans, directory busting, banner grabbing. Map the full attack surface before touching anything.
02
Identify: find the vulnerability. Match service versions to CVEs, probe endpoints, analyze source or binary. Document every finding.
03
Exploit: gain initial access. Use the identified vector cleanly. Note the exact payload, tool, and command used, reproducibility matters.
04
Escalate: move from foothold to full control. SUID binaries, weak sudo rules, credential reuse, misconfigured services.
05
Document: write the full writeup into the SecOps-Vault. Command-by-command. What worked, what didn't, and why. Lessons carry forward.
SecOps-Vault Integration
๐Ÿ“š Everything gets documented
All CTF writeups, tool notes, and methodology guides live in the SecOps-Vault, a personal Obsidian knowledge base with 168 notes across 13 sections. The vault has dedicated sections for Labs (HTB + THM write-ups), CTF methodology, and tool documentation. Nothing gets lost, every machine becomes a reference for the next one.
HackTheBoxTryHackMe Web SecurityForensics CryptographyOSINT Reverse EngineeringExploitation WriteupsSecOps-Vault
// SnaxCode ยท ctf.html Updated: April 2026