Swissky's Lab
Swissky

Swissky's adventures into InfoSec World !

Write-ups/CTF & Bug Bounty
LeHack 2025 - PayloadPLZ

LeHack 2025 - PayloadPLZ

Last weekend, I took part in the LeHack 2025 event in Paris. As always, the challenges hosted by YesWeHack were top-notch and full of valuable learning opportunities. This year's highlight was crafting a polyglot payload capable of triggering in 13 different contexts, including SQL injection, XSS, Bash command execution, and more…
·
LeHack 2025 - PayloadPLZ
Pokemon Glitches

Anatomy of Pokemon glitches

Digging into the anatomy of Pokemon Yellow glitches, or how to impress your school friends during break time…
·
Anatomy of Pokemon glitches
SSRFmap - AXFR module

SSRFmap - Introducing the AXFR module

After reading a great blog post about a CTF challenge where you had to chain several SSRF to get the flag, I took some time to improve SSRFmap, fix the bugs and merge the Pull Requests. Then I implemented a new module called axfr to trigger a DNS zone transfer from the SSRF using the gopher protocol. This blog post is about my journey on implementing it…
·
SSRFmap - Introducing the AXFR module
Ph0wn CTF 2019 - Flag Digger

Ph0wn CTF 2019 - Flag Digger

TLDR: It's never too late to try to solve an old challenge. This blog post is a quick writeup of a challenge from the Ph0wn CTF 2019 where you were given a small chip and you had to extract the flag from it…
·
Ph0wn CTF 2019 - Flag Digger