saarsec

Explotify was a Python service at ENOWARS 3 in July 2019. Summarizing, it was a Flask-based app, which used two database backends - a SQLite database to store user credentials and information, and a MongoDB to store information about generated songs.

Read more

Two-factor enabled webservice we managed to score firstblood during FAUST CTF 2019.

Read more

We solved three web challenges in the 2019 Qualifier of Midnightsun CTF including an interesting challenge about nginx and a couple of XSS challenges.

Read more