No results found.
I am. I believe what I'm offering is worth your while.
I exploit a misconfigured Nginx alias to read the jwt.secret file, then forge an admin JWT token to access the hidden post containing the flag.
I share how I got into CTFs, which tools and categories to start with, and why practicing through challenges beats passive learning every time.
