Peter Wambua wambuapeter

TJCTF Web Challenges This is a walkthrough of some interesting web challenges that I tackled the TJCTF 2025 together with my team, fr334aks-mini Loopy Can you access the admin page? Running on port 5000 For this challenge, we are given a website that shows other website HTML content previews. Trying https://thecyberlearner.github.io: We are told to access the admin site on port 5000, so I definitely knew I’m dealing with an SSRF.

Himaya We are the Hushed Protector of Health Data

HTB web challenge jscalc walkthrough

This is a walkthrough of a simple web challenge I created for CyberKimathi CTF competition.

A walkthrough of a medium room in TryHackMe. A great room needing critical thinking to exploit path traversal attacks to scripting to manipulate a gdbserver process to a tricky privilege escalation by ruby.

Daystar Hackathon CTF writeups My team CyberKimathi participated in the hackathon held at Daystar University. Being just a 2 hrs CTF and to be determined by time, we solved a couple of challenges, toping the competition. Here is a writeup of some: Challenge 1: Threat Intelligence A Malicious actor has been using the IP 64.176.194.7 to spread malware, can you identify the filename to the Powershell script used in the malicious activity.

This challenge is part of the Sherlocks HackTheBox challenges which are mainly focused on improving your defensive skills.

A module from CTFROOM focusing on Windows Event IDs, and aiming to test your understanding of Windows Event IDs and their use in incident response.

A writeup of the first Penetration Testing Report I wrote for my project in a penetration testing course

Kioptrix is usually the starting point of all penetration testers, the first box we pawn. Here is a walkthrough of how I rooted my kioptrix box.