Azariel

27/05/2026

I am pleased to share that I have successfully completed the comprehensive training for the ISC2 Certified in Cybersecurity (CC) program. This rigorous training provided a strong foundation in essential cybersecurity concepts and practices. Throughout the program, I successfully completed the following modules:

- CC Course Pre-assessment
- CC Domain 1: Security Principles
- CC Domain 2: Incident Response, Business Continuity and Disaster Recovery Concepts
- CC Domain 3: Access Control Concepts
- CC Domain 4: Network Security
- CC Domain 5: Security Operations
- CC Course Conclusion & Final Assessment
- ISC2: Certified in Cybersecurity (CC)
I would like to express my sincere gratitude to the mentors who provided invaluable guidance, expertise, and support throughout this journey. Your insights have been instrumental in my professional development.I look forward to applying these foundational principles and continuing to grow my skills within the cybersecurity industry.

09/03/2026

Just wrapped up the "𝐋𝐞𝐚𝐟" warmup challenge on 𝐇𝐚𝐜𝐤𝐯𝐢𝐬𝐞𝐫! 🍃 This was a fantastic hands-on exercise in web application security, specifically focusing on 𝐒𝐞𝐫𝐯𝐞𝐫-𝐒𝐢𝐝𝐞 𝐓𝐞𝐦𝐩𝐥𝐚𝐭𝐞 𝐈𝐧𝐣𝐞𝐜𝐭𝐢𝐨𝐧 (𝐒𝐒𝐓𝐈) in a 𝐏𝐇𝐏/𝐓𝐰𝐢𝐠 environment. I successfully leveraged template filters to achieve 𝐑𝐞𝐦𝐨𝐭𝐞 𝐂𝐨𝐝𝐞 𝐄𝐱𝐞𝐜𝐮𝐭𝐢𝐨𝐧 (𝐑𝐂𝐄), extracted hidden database credentials from the backend source code, and pivoted to a MySQL database dump to capture the flag. Always a great feeling to chain vulnerabilities! 💻

Check out the badge here: https://app.hackviser.com/show/Azariel/warmups/leaf?id=e617c7299f2c423e9be8a23e26f1adf4



New achievement on Hackviser! Check on my profile to see my achievement!

07/03/2026

In the cybersecurity field, understanding the nuances of how malicious inputs can bypass standard filters is critical for building more resilient systems.

I am pleased to share that I have successfully completed the 𝗩𝗲𝗻𝗼𝗺𝗼𝘂𝘀 𝘄𝗮𝗿𝗺-𝘂𝗽 𝗰𝗵𝗮𝗹𝗹𝗲𝗻𝗴𝗲 on 𝗛𝗮𝗰𝗸𝘃𝗶𝘀𝗲𝗿. This lab provided an excellent opportunity to dive deeper into input manipulation and exploitation techniques, emphasizing the importance of robust sanitization and defense-in-depth strategies.

Each challenge completed is another step toward a more comprehensive understanding of the current threat landscape. I am looking forward to applying these refined analytical skills to the next complex scenario.

Challenge Progress:
https://app.hackviser.com/show/Azariel/warmups/venomous?id=1fb8895d32664c4988993cc774493881

New achievement on Hackviser! Check on my profile to see my achievement!

05/03/2026

I just completed the Capture! room on TryHackMe! Can you bypass the login form? 🎯

Instead of using standard tools, I wrote a custom Python script to automatically bypass the login page. It reads the website's HTML, solves the math CAPTCHAs, and submits the payloads in a live session.

Check out the screenshots for my coding fail: I accidentally tried to log in using the literal letters "users.txt" instead of reading the actual wordlist! 🤦‍♂️ After fixing that bug and cleaning up my web requests, the script blasted right through. Got the flag! 🚀💻

Try it yourself: https://tryhackme.com/room/capture?utm_campaign=social_share&utm_medium=social&utm_content=room&utm_source=facebook&sharerId=68c156316bde13bb07d20f5a

Can you bypass the login form?

05/03/2026

Maintaining a sharp technical edge requires a commitment to understanding how different components of an application interact and where potential vulnerabilities may lie.

I am pleased to share that I have successfully completed the Arrow warm-up challenge on Hackviser. This exercise was an excellent opportunity to practice the analytical skills needed to navigate specific logic and ex*****on flows within a security context. Focusing on these targeted labs is a vital part of my ongoing effort to strengthen my overall security methodology.

I am looking forward to applying the problem-solving techniques gained from this challenge to more advanced scenarios as I continue my learning journey.

Challenge Progress:
https://app.hackviser.com/show/Azariel/warmups/arrow?id=f92aaa440e774446b8ac38365d7093f7

New achievement on Hackviser! Check on my profile to see my achievement!

03/03/2026

Maintaining robust security at the data layer is a fundamental requirement for any secure application.

I have successfully completed the Query Gate warm-up challenge on Hackviser. This lab provided an excellent environment to practice identifying and mitigating vulnerabilities related to database queries. It served as a valuable reminder that even small oversights in query handling can lead to significant security risks.

Building a strong foundation in these core principles is essential for developing a proactive security mindset. I am eager to continue exploring more complex data-driven security challenges as I advance my technical skill set.

Challenge Progress:
https://app.hackviser.com/show/Azariel/warmups/query-gate?id=c9eeb444964d481cb71f10162b02d7d8

New achievement on Hackviser! Check on my profile to see my achievement!

02/03/2026

Testing skills in a controlled environment is one of the most effective ways to bridge the gap between theory and practice.

I recently completed the 𝓕𝓲𝓵𝓮 𝓗𝓾𝓷𝓽𝓮𝓻 warm-up challenge on Hackviser, which focused on refining the reconnaissance and analytical skills necessary for identifying hidden vulnerabilities. While it serves as a foundational exercise, it was a great reminder that mastering the basics is the first step toward tackling more complex security scenarios.

Continuous improvement is essential in the cybersecurity field, and I look forward to applying these insights to the next challenge.

You can view the challenge details and my progress here:
https://app.hackviser.com/show/Azariel/warmups/file-hunter?id=7f4e96d490d14442b9be4c20551c3948

New achievement on Hackviser! Check on my profile to see my achievement!

02/03/2026

Understanding the mechanics behind secure command ex*****on is fundamental to both offensive and defensive cybersecurity.

I am pleased to share that I have successfully completed the Secure Command warm-up challenge on Hackviser. This lab was a great opportunity to dive into the nuances of how commands are processed and, more importantly, how they can be secured against common exploitation techniques.

Continuous hands-on practice like this is essential for maintaining a sharp technical edge and building a deeper understanding of secure system interactions. I am looking forward to applying these insights as I progress toward more complex scenarios.

Challenge Progress:
https://app.hackviser.com/show/Azariel/warmups/secure-command?id=1d2c35e2988648febce983140bb62287

New achievement on Hackviser! Check on my profile to see my achievement!

16/02/2026

I recently competed in the 0xFUN International CTF, a global cybersecurity competition where participants from around the world solve complex digital puzzles.

One of the challenges, titled "Bard," was particularly tricky. It started with a simple image that appeared normal but was actually hiding a secret deep within its code. When the usual methods didn't work, I had to treat the file like a broken piece of evidence. I eventually wrote my own computer program to "repair" the file's digital DNA so the computer could read it again.

Whether you are into tech or just curious about how digital investigators solve mysteries, you can check out my step-by-step process here:

https://azariel.gitbook.io/azariel/forensics/0xfun-bard

P.S: You can also check out other writeups I created found in my gitbook, Thanks!

Category: Forensics / Steganography

28/01/2026

I thought I hit a dead end... until I found the UNBISNET archives. 🕵️‍♂️

The mission was clear: Find the countries that abstained from the 1995 "Enemy State" resolution.

At first, the data was buried under decades of digital dust. Google gave me generalities, but I needed the official voting record. After cross-referencing historical archives and navigating the UN Digital Library, I finally cracked the code and found the names.

One of the countries on that list might actually surprise you given today's geopolitical climate.

Check out the writeup to see the official breakdown and the tools I used to bypass the noise: 👇

https://azariel.gitbook.io/azariel/osint/swimmer-ctf-obsolete

Author: Azariel