CTF Notes
CTFs are where I sharpen the instincts I use in real engagements. The notes here are what I keep wishing I had open in a tab while playing.
Pages
Reading order on a new challenge
- Read the description twice. Note every noun.
- Open every URL in the description (forgotten asset → easy flag).
- Read source if provided. Read carefully — the bug is usually in the file the author added.
- Try the cheap path first: known CVEs of the stack version.
- Then the medium path: business-logic abuse.
- Then the creative path: anything off-by-one in the constraints.