Rayhan0x01
@Rayhan0x01
Followers
2K
Following
2K
Statuses
165
DevOps & AppSec Engineer | CTF Organizer @RedTeamVillage_ | OSCP, OSWE
🇧🇩 Bangladesh
Joined May 2018
@NicerInPerson @stealthybugs @albinowax That's most likely the PHP native `system` function and a Twig SSTI payload. The filter function will pass each list element as an argument to the specified function name.
1
0
0
Perform supply-chain attack in the NodeJS ecosystem showcasing my “Prison Pipeline” challenge from #hackthebox Business CTF 2024.
1
2
14
RT @RedTeamVillage_: Our @defcon recap video is live! 🥳 Thank you to everyone who attended the village this year at DEF CON! Another huge…
0
14
0
One of my best moments this #defcon, I got to meet and nerd out with the fantastic @LiveOverflow at the @RedTeamVillage_ party!! ❤️
0
0
37
We're cooking a 🔥 CTF this year, join us and make Master Chief proud! 🦾
Gear up, Spartans! 🦾 Get ready for the RTV CTF at DC32! 🏴☠️ Kicking off August 9th, it's first come, first served. Sign up in the contest area, onsite only. 🚪Registration opens when the contest doors open. Don't miss out! 🔥
0
0
5
RT @pwnEIP: Swag packing day! We're all busily packing for the big show. @systemDumb @j0nk1m @santosomar @lazzslayer @ds1nk @NopResearcher…
0
14
0
RT @pwnEIP: All of our @RedTeamVillage_ coins are produced by @signature_coins, they do amazing with design and manufacturing and go ab…
0
13
0
0
3
0
RT @NopResearcher: First around the world trip ✅ Meet @Rayhan0x01 in person ✅ Party with @pwnEIP in multiple counties✅ Add 3 more countrie…
0
2
0
RT @RedTeamVillage_: Pivoting, Tunneling, and Redirection? Oh my! 😱 Join @pwnEIP and @NopResearcher's workshop at @NahamSec's NahamCon on…
0
13
0
RT @RedTeamVillage_: We've been working on something extra special this year for @defcon...and the drop is finally here! We will be pre-sel…
0
47
0
RT @RedTeamVillage_: Guess who’s back. Back again. Red Team Village is back, tell a friend…👀 😈 @defcon #DC31
0
58
0
@0xTib3rius @hackthebox_eu Glad to hear it! Also check out "Spell Orsterra", and "Felonious Forums" if you like long exploit chains and obscure web app vulnerabilities.
0
0
0
UNI CTF 2022 write-up: Nginx UNIX socket injection, PHP Messenger deserialization, and custom POP chain to export PHP shell with PHP-GD image compression bypass.
0
10
31
My write-up on the Felonious Forums challenge from Business CTF 2022 is up. It showcases chaining Self XSS with Cache Poisoning 🚩 #CTF
0
3
7
My write-up on the Phishtale challenge from Business CTF 2022 that demonstrates H2 Request Smuggling and Twig SSTI is live: 🚩
0
8
27