There's No Make It Secure

Hi, I am A00N

Welcome to My personal blog where I share my findings.

My corner of the web for web security research, bug bounty writeups & CTF challenges Have a good read!

My corner of the web for research, bug bounty writeups & CTF challenges . Have a good read!

There's No Make It Secure

Latest Posts

• Published on

  January 22, 2026 • –––views

  When Self-XSS Isn’t Self Anymore: Escalating to Account Takeover

  bug-bountyWriteupWebATOXSS

  How chaining a self‑XSS with email HTML injection resulted in account takeover.

• Published on

  November 22, 2025 • –––views

  CTF - Intigriti Challenge 1125

  WriteupWebCTFRCESSTIJWT

  CTF - Intigriti Challenge 1125: JWT tampering to gain admin access, then Jinja2 SSTI for RCE and flag recovery.

• Published on

  August 5, 2025 • –––views

  When the Price Goes Wrong: $9K from 2 Price Manipulation

  bug-bountyWriteupWeb

  2 price manipulation bugs turned into a $9,000 bounty by breaking the application's core logic.