PinnedFHantkeHacking the University in a Few StepsEscalating a Wrong Date to Get Code Execution12 min read·Apr 18, 2022--5--5
FHantkeinInfoSec Write-upsHow to Get CVEs Online (Fast)Some thoughts about CVEs5 min read·Jan 28, 2024--1--1
FHantkeExamSys — Multiple SQL InjectionsExamSys is an open source online exam system. During a routine scan through GitHub, this repository was found vulnerable to multiple SQL…2 min read·Jan 14, 2024----
FHantkeTill Breach Do Us Part: The Uninvited Guest at Your WeddingPicture this: you’ve just had the perfect wedding. The vows were spoken, the dance floor was packed, but something was wrong...6 min read·Aug 5, 2023----
FHantkeinInfoSec Write-upsClique Writeup — ångstromCTF 2022Mutation XSS in DOMPurify and marked4 min read·May 5, 2022----
FHantkeinInfoSec Write-upsIntigriti — XSS Challenge 0621XSS via WebAssembly7 min read·Jun 27, 2021----
FHantkeinInfoSec Write-upsIntigriti — XSS Challenge 0321XSS with CSRF Bypass4 min read·Mar 28, 2021--2--2
FHantkeinInfoSec Write-upsPost Office — DaVinciCTF — WriteupA conversation with a pirate5 min read·Mar 14, 2021----
FHantkeinInfoSec Write-upsDaVinciCTF — Web Challenges — WriteupThis weekend, I had the pleasure to play the DaVinci CTF and score first place with my team FAUST. It was great fun and a good quality CTF…10 min read·Mar 14, 2021----