# Write-Ups

- [CTF - BugBase - RaaS](/cyber-sec/write-ups/ctf-bugbase-raas.md): A beginner-friendly introduction to heap-related CTF challenges.
- [THM - Binex](/cyber-sec/write-ups/thm-binex.md): Exploiting the SUID bit and a buffer overflow for privesc after brute forcing the initial access.
- [THM - Brainpan](/cyber-sec/write-ups/brainpan.md): Exploiting a buffer overflow and abusing sudo privileges for escalation.
- [THM - CMesS](/cyber-sec/write-ups/cmess.md): Discovering a virtual host that leads to a compromised CMS with subsequent sudo privesc.
- [THM - Mr. Robot](/cyber-sec/write-ups/mr-robot.md): WordPress exploitation and password cracking on a Mr. Robot-themed target.
- [THM - Olympus](/cyber-sec/write-ups/olympus.md): A custom CMS and a puzzle-like exploit chain with some SUID fun for privesc.
- [THM - UltraTech](/cyber-sec/write-ups/ultratech.md): Exploiting an exposed API endpoint and weak password hashes before escalating via docker.