CTF Security

Heyyy welcome to ctf-sec, on this channel you will find videos on Ethical Hacking, Digital Forensics, CTF challenges, python programming and cybersecurity in general.

Практический ИИ в кибербезопасности | Advent of Cyber ​​2025 – День 4

Практический ИИ в кибербезопасности | Advent of Cyber ​​2025 – День 4
Exploiting XWiki CVE‑2025‑24893 on HacktheBox

Exploiting XWiki CVE‑2025‑24893 on HacktheBox
Практический фишинг с использованием SEToolkit | AoC 2025 — День 2

Практический фишинг с использованием SEToolkit | AoC 2025 — День 2
Командная строка Linux для начинающих | AoC 2025 – День 1

Командная строка Linux для начинающих | AoC 2025 – День 1
Era Hackthebox (HTB)

Era Hackthebox (HTB)
Abusing Active Directory Permissions & ESC15 | Tombwatcher HackTheBox

Abusing Active Directory Permissions & ESC15 | Tombwatcher HackTheBox
Windows AD Attack Lab | SMB, BloodHound, KeePass, DPAPI | Puppy (HackTheBox)

Windows AD Attack Lab | SMB, BloodHound, KeePass, DPAPI | Puppy (HackTheBox)
Roundcube’s Critical Webmail RCE (CVE-2025-49113)

Roundcube’s Critical Webmail RCE (CVE-2025-49113)
Grafana RCE CVE-2024-9264 Cronjob PrivEsc to Root | Planning HTB

Grafana RCE CVE-2024-9264 Cronjob PrivEsc to Root | Planning HTB
Laravel Environment Manipulation via Query String - Environment Hackthebox HTB

Laravel Environment Manipulation via Query String - Environment Hackthebox HTB
Eureka Microservices Exploit & Heapdump Memory leak | Eureka Hackthebox (HTB)

Eureka Microservices Exploit & Heapdump Memory leak | Eureka Hackthebox (HTB)
How to Get Root on Gibbon LMS (TheFrizz HTB Arbitrary File Write Exploit)

How to Get Root on Gibbon LMS (TheFrizz HTB Arbitrary File Write Exploit)
Exploiting Vulnerable BOOKSTACK & TEAMPASS | SSRF, LFR,SQLi and Shared memory Binary - HTB Checker

Exploiting Vulnerable BOOKSTACK & TEAMPASS | SSRF, LFR,SQLi and Shared memory Binary - HTB Checker
File Upload Restriction Bypass to Remote Code Execution (CVE-2024-53677) HTB Strutted Walkthrough

File Upload Restriction Bypass to Remote Code Execution (CVE-2024-53677) HTB Strutted Walkthrough
RCE in LimeSurvey & HashiCorp Consul | Heal HackTheBox Walkthrough

RCE in LimeSurvey & HashiCorp Consul | Heal HackTheBox Walkthrough
Leaked API Token From APK Reverse Engineering Led to Full System Compromise | Instant HackTheBox

Leaked API Token From APK Reverse Engineering Led to Full System Compromise | Instant HackTheBox
From F’s to A’s | Hacking Natasha’s Way into Hacker Camp - OSUSEC CTF Hacker101

From F’s to A’s | Hacking Natasha’s Way into Hacker Camp - OSUSEC CTF Hacker101
Path Traversal and File Upload Bypass Exploit via Content-Disposition Header | TempImage Hacker101

Path Traversal and File Upload Bypass Exploit via Content-Disposition Header | TempImage Hacker101
SQLPad SSTI to RCE | Hack The Box (HTB) Sightless

SQLPad SSTI to RCE | Hack The Box (HTB) Sightless
Hacking Pizza Paradise: Exploiting Client-Side Validation & Path Traversal | INTIGRITI 1337 2024

Hacking Pizza Paradise: Exploiting Client-Side Validation & Path Traversal | INTIGRITI 1337 2024
Twitch Live Stream: Ticketastic Demo Instance Part 1 - Manual SQL Exploit Walkthrough (Unfinished)

Twitch Live Stream: Ticketastic Demo Instance Part 1 - Manual SQL Exploit Walkthrough (Unfinished)
File Inclusion to PHP Remote Code Execution (RCE): Gaining Control and Executing Arbitrary Commands

File Inclusion to PHP Remote Code Execution (RCE): Gaining Control and Executing Arbitrary Commands
Blind SQL Injection & Command Execution: Hacking the Hacker101 Photo Gallery CTF

Blind SQL Injection & Command Execution: Hacking the Hacker101 Photo Gallery CTF
Deathnote CTF Walkthrough: File Upload Exploits, SSH Misconfig, File attributes & Docker Breakouts

Deathnote CTF Walkthrough: File Upload Exploits, SSH Misconfig, File attributes & Docker Breakouts
Lab 05 - Part 1: Manual Exploitation to Dump Usernames & Passwords from PostgreSQL Database

Lab 05 - Part 1: Manual Exploitation to Dump Usernames & Passwords from PostgreSQL Database
Lab 04 - SQL injection attack, querying the database type and version on MySQL and Microsoft

Lab 04 - SQL injection attack, querying the database type and version on MySQL and Microsoft
Lab 03 - SQL Injection attack, querying the database type and version on Oracle

Lab 03 - SQL Injection attack, querying the database type and version on Oracle
Lab 02 - SQL Injection Vulnerability allowing login bypass

Lab 02 - SQL Injection Vulnerability allowing login bypass