InfoSec Engineer. Focusing on web application security.
Prologue GiveWP is one of the popular wordpress plugins to handle fundraising and donation with 100k+ installation. This plugin has main features like...
Chall Description Initial Foothold When first visit the webpage, we get this view of some sort of maps : There is something interesting on the...
What is Cross Site Request Forgery ? Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web...
![[Arkavidia 7.0 CTF Writeup] Arkavidia Atlas](https://cdn.hashnode.com/res/hashnode/image/upload/v1657866411494/f2sP0m0zo.jpg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)
![[Tokopedia] Site-Wide CSRF Through Graphql Request](https://cdn.hashnode.com/res/hashnode/image/upload/v1657865301596/9tSe5_1Z4.jpg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)