James Cao

DreamHack - Are you admin? Web Challenge Write-up

Hmm... You look suspicious. Are you admin?

Nov 19, 2025 • 2 min read

TryHackMe - Input Manipulation & Prompt Injection Room Walkthrough

Understand the basics of LLM Prompt Injection attacks.

Nov 19, 2025 • 1 min read

DreamHack - Relative Path Overwrite Advanced Web Challenge Write-up

A patched issue for Exercise: Relative Path Overwrite.

Nov 18, 2025 • 2 min read

DreamHack - crawling Web Challenge Write-up

Dream built a web crawling site. Find vulnerabilities on crawling sites and earn flags!

Nov 18, 2025 • 2 min read

DreamHack - Tomcat Manager Web Challenge Write-up

Dream has started development as a Tomcat server. Find vulnerabilities in services and obtain flags. The flag is /flag on the path.

Nov 17, 2025 • 2 min read

DreamHack - Relative Path Overwrite Web Challenge Write-up

Exercise: This is an exercise in Relative Path Overwrite.

Nov 17, 2025 • 1 min read

DreamHack - easy-login Web Challenge Write-up

Log in as an administrator to earn flags! The flag format is DH{...}

Nov 17, 2025 • 2 min read

DreamHack - weblog-1 Web Challenge Write-up

Analyze the given code and logs to find answers that correspond to the given questions.

Nov 14, 2025 • 3 min read

DreamHack - Client Side Template Injection Web Challenge Write-up

This is an exercise in Client Side Template Injection.

Nov 14, 2025 • 1 min read

DreamHack - file-csp-1 Web Challenge Write-up

Flags can be obtained by writing CSP according to the conditions required by the question.

Nov 14, 2025 • 3 min read

© 2025 James Cao. Some rights reserved.

Using the PaperMod theme for Hugo.