Monday, June 1, 2026
🔎 Fresh slice: OSINT Challenges · CTF@CIT 26  ·  💥 Extra sauce: Lazy Pharaoh · CyCTF 2026 Quals  ·  🧭 Out the oven: OSINT Challenges · 0xFun CTF  ·  🛰️ Flag on the table: Delicious Meeting & Dune · 0xL4ugh CTF v5  ·  🔎 Fresh slice: How an Instagram Post Became a Bluep...
Est. Whenever I Felt Like It
Latest DropCTF@CIT 26Post TypeWriteup
PIZZA
STEVE
Security posts, exploit writeups, and pizza-fueled notes.
Posts9 PublishedCoolnessOff the Charts

Tools & Resources

10 picks
01

CyberChef

Encode, decode, encrypt, analyse. The Swiss Army knife. Always open.

gchq.github.io/CyberChef/
02

GTFOBins

Unix binaries for privilege escalation. Bookmarked before my first CTF.

gtfobins.github.io/
03

PayloadsAllTheThings

The payload reference. Covers everything from SQLi to SSRF to race conditions.

github.com/swisskyrepo/PayloadsAllTheThings
04

jwt.io

Decode and inspect JWTs instantly. Essential for any web challenge with auth.

jwt.io/
05

Ghidra

NSA's free reverse engineering tool. Handles Go binaries better than IDA for free.

ghidra-sre.org/
06

pwntools

Python CTF framework for exploit development. Makes ROP chains feel like cooking.

github.com/Gallopsled/pwntools
07

Burp Suite CE

HTTP proxy, scanner, repeater. The first tool open on every web challenge.

portswigger.net/burp
08

Wireshark

Packet capture and analysis. Good for network forensics and traffic-based challs.

www.wireshark.org/
09

dnsbin

Self-hosted DNS logger for OOB exfiltration. Required for blind SSRF / RCE.

github.com/m57/dnsBin
10

Revshells

One-click reverse shell payloads in every language. Saves time every single time.

www.revshells.com/