A personal collection of Capture The Flag (CTF) write-ups — documenting my journey of breaking, learning, and understanding cybersecurity challenges.
This repository contains detailed write-ups from various CTF competitions and cybersecurity labs. Each write-up covers the thought process, tools used, and lessons learned from solving each challenge.
| Challenge | Author | Writeup |
|---|---|---|
| Login | BrownieInMotion | 📝 Writeup |
| Match The Regex | Sunday Jacob Nwanyim | 📝 Writeup |
🚧 Coming Soon...
| Challenge | Category | Writeup |
|---|---|---|
| File path traversal, simple case | Directory Traversal | 📝 Writeup |
| Unprotected admin functionality | Access Control | 📝 Writeup |
| Unprotected admin functionality with unpredictable URL | Access Control | 📝 Writeup |
| Challenge | Category | Writeup |
|---|---|---|
| CLOUD 🍰 Ghost in the Bucket | Misc | 📝 Writeup |
| Valaheadvala (Reverse) | Reverse | 📝 Writeup |
| Platform | Solved |
|---|---|
| PicoCTF | 2 |
| PortSwigger | 3 |
| STDiOCTF 2025 | 2 |
| Tool | Purpose |
|---|---|
| Burp Suite | HTTP Proxy & Packet Interception |
| CyberChef | Data Encoding / Decoding / Analysis |
| Browser DevTools (F12) | Source Code Inspection & Debugging |
My_CTF_Writeup/
├── PicoCTF/
│ ├── Cryptography/
│ └── Web Exploitation/
│ ├── login/
│ └── MatchTheRegex/
├── PortSwigger_Labs/
│ ├── File path traversal, simple case/
│ ├── Unprotected admin functionality/
│ └── Unprotected admin functionality with unpredictable URL/
├── STDiOCTF-2025/
│ ├── CLOUD Ghost in the Bucket(Misc)/
│ └── Valaheadvala(Reverse)/
├── LICENSE
└── README.md
Each challenge folder contains:
- 📄 Writeup (
.md) — Step-by-step solution with explanation - 🖼️ Screenshots — Supporting images and evidence
These write-ups are intended for educational purposes only. They are meant to document my personal learning journey in cybersecurity. Please do not use these solutions to gain unfair advantages in active competitions.
Made with ❤️ by PhantomOutBreak