https://cnf409.me/ CTF writeups, cybersecurity research, and deep dives en-us Thu, 16 Apr 2026 00:57:14 +0000 conflict-blog-builder https://cnf409.me/posts/fcsc2026-10-fast-fishers/ https://cnf409.me/posts/fcsc2026-10-fast-fishers/ Sun, 12 Apr 2026 00:00:00 +0000 Abusing cross-origin iframe navigation and Firefox's execCommand Unicode normalization to bypass a postMessage filter web web-client xss iframe postmessage https://cnf409.me/posts/fcsc2026-secure-mood-notes/ https://cnf409.me/posts/fcsc2026-secure-mood-notes/ Sat, 11 Apr 2026 00:00:00 +0000 Leaking a Snuffleupagus secret key via Apache .htaccess injection, then forging signed PHP cookies to chain a Composer gadget, smuggling an ELF into the server and escaping the sandbox via LD_PRELOAD and mail() web web-server php apache flask ld_preload pop_chain snuffleupagus rce https://cnf409.me/posts/cve-2026-34036/ https://cnf409.me/posts/cve-2026-34036/ Tue, 31 Mar 2026 00:00:00 +0000 Technical explanation of CVE-2026-34036 cve php lfi bypass dolibarr https://cnf409.me/posts/heroctf2025-spring-drive/ https://cnf409.me/posts/heroctf2025-spring-drive/ Mon, 01 Dec 2025 00:00:00 +0000 From String.hashCode() Collision to RCE via HTTP Method Injection web web-server java ssrf command injection clamav redis https://cnf409.me/posts/n1ctf2025-eezzjs/ https://cnf409.me/posts/n1ctf2025-eezzjs/ Thu, 02 Oct 2025 00:00:00 +0000 Exploiting a bad JWT implementation and bypassing path.extname to get RCE web web-server js rce jwt https://cnf409.me/posts/sthack2025-sthackmillions/ https://cnf409.me/posts/sthack2025-sthackmillions/ Tue, 27 May 2025 00:00:00 +0000 great for gambling addicts reverse misc osint web gambling qr_code https://cnf409.me/posts/fcsc2025-coloratops/ https://cnf409.me/posts/fcsc2025-coloratops/ Sun, 27 Apr 2025 00:00:00 +0000 Voici un crackme plein de couleurs avec des allures old school. reverse gdb crackme