CHW Cybersecurity Blog and Portfolio
Welcome to CHW World
█
A party engineer named CHW (ID: chw41) specializing in
Web Security, Penetration Testing, and
Red Teaming.
Currently an active member of the CTF teams 竹狐 (TakeKitsune) and i'm downQQ , and a second-cohort Master’s graduate of is1ab (Information Security Laboratory).
Holds OSWE, OSWA, OSCP+ certifications.
Work Experience
[OSWE, WEB-300] Instructional notes
OSWE / WEB-300 instructional notes covering source code review, exploit chain analysis, authentication bypass, deserialization, SSTI, XXE, XSS, CSRF, SSRF, prototype pollution, WAF bypass, and real-world web vulnerability research patterns.
[OSWE, WEB-300] Instructional notes - Part 6
OSWE WEB-300 筆記 Part 6,涵蓋 Dangerous Functions、Bypass Security Filter to Trigger Eval、Dolibarr Eval Filter Bypass RCE、PostgreSQL injection、Bypass WAF、oraza WAF、RudderStack SQLi and Coraza WAF Bypass 等等。
[OSWE, WEB-300] Instructional notes - Part 5
OSWE WEB-300 筆記 Part 5,涵蓋 Server-Side Request Forgery、SSRF Port Scanning、SSRF Subnet Scanning、Render API Auth Bypass、Prototype Pollution、EJS Prototype Pollution RCE Exploitation、Handlebars Prototype Pollution RCE Exploitation 等等。
[OSWE, WEB-300] Instructional notes - Part 4
OSWE WEB-300 筆記 Part 4,涵蓋 Websocket client、Concord 身份繞過到 RCE、Same-Origin Policy (SOP)、Cross-Origin Resource Sharing (CORS)、SameSite、CORS+CSRF、DatabaseModule API Leak 等等。
[OSWE, WEB-300] Instructional notes - Part 3
OSWE WEB-300 筆記 Part 3,涵蓋 Password Reset Vulnerability、XML Parsing、XXE Exploit、Web Shells、openCRX 身份繞過與 RCE、openITCOCKPIT XSS、DOM-based XSS 等等。