Description The Artisan’s Ledger is a 205-point OSINT challenge from Liga CTF 2026 Week 3. We’re given a single photograph of a monument and need to extract hidden historical information encoded i...

Week 3 of Liga CTF 2026 brought us deep into the forensics and OSINT rabbit hole. Six 100-point challenges across image metadata analysis, geolocation, video inspection, and Malaysian landmark rese...

Description The Ghost in the Logs is a Forensics challenge from Liga CTF 2026 Week 3. We were given a Windows Event Log file and tasked to find a rogue account created by an attacker who tried to ...

Description This is GGEZAF challenge, its a Boot2Root machine from Liga CTF 2026 Week 2. A dockerized Linux environment where we need to find our way in and escalate to root. Enumeration Nmap Sc...

Description Packing is a technique used by malware to obfuscate its functionalities. Malware packers ‘pack’ the main malicious binary to make static analysis much harder. The malware ‘unpacks’ ...

Description I made this little program that locks a secret message inside a binary. I used THREE layers of protection — there’s literally no way to get the message out without the proper unlock...

Description This APK file is malicious. It secretly talks to a C2 Server. Identify the C2 Server address, and find the flag. Recon An APK is just a ZIP file under the hood. We can load it ...

https://tryhackme.com/room/bsidesgtlibrary Description The Library is a Boot2Root machine for FIT and bsides guatemala CTF. Gain a Flag Enumeration Nmap Scan We see that theres two open Por...

https://petalingjaya.kktm.edu.my/ After weeks of planning, building, and refining — this is the final form of my Competition Registration System developed for Pertandingan Inovasi KKTM Petaling Ja...

https://tryhackme.com/r/room/lofi Description Lo-Fi was a very simple room where we exploited a Local File Inclusion (LFI) vulnerability to read the flag. Enumaration In this challenge, we skip...