B2R Monster Corporate Writeup

A boot-to-root writeup for Monster Corporate, covering SMB enumeration, WordPress admin access, plugin RCE, lateral movement with xxd, and cron-based privilege escalation.

May 11, 2026 · 12 min · zx10r

A Practical Web Exploitation Workflow for CTFs and Labs

A disciplined web testing workflow for mapping application behavior, finding logic flaws, and proving impact cleanly.

May 9, 2026 · 2 min · zx10r

My First CTF: Enumeration Lessons That Made Exploitation Click

How my first rooted CTF target taught me to slow down, enumerate carefully, and turn small signals into a full attack path.

May 6, 2026 · 2 min · zx10r