Tanpa key sekalipun, ternyata data yang dienkrip ransomware Babuk yang menyerang PDN bisa direcover. blog.compactbyte.com/2024/07/09/rec…

Cybersecurity: Ladang Mainan Hacker, Pahami Biar Gak Keder! Simak ViGenk X Jumandi bersama : CO-Founder of Cylabus, Berlian Gabriel Live : Wisma Kemenpora RI youtube.com/watch?v=ibBVQz…

Back to Vegas for DEFCON

Earlier this year, I used a 1day to exploit the kernelCTF VRP LTS instance. I then used the same bug to write a universal exploit that worked against up-to-date mainstream distros for approximately 2 months. osec.io/blog/2024-11-2…

It's been a long time since my last tweet. I finally had some free time this weekend and decided to do the blockchain challenge named "GasSaver" in 0CTF 2024. Here is my writeup for it. chovid99.github.io/posts/0ctf-202…

Highly recommended for anyone who is curious about how Aptos Fungible Assets works😄

in light of the recent Bybit hack, what can Solana teams do to be more secure? Solana has a unique signature model, that is arguably safer for multisigs. I wrote a quick post exploring this model, proposing a procedure for safe signing. osec.io/blog/2025-02-2…

NEW: A few months ago, we uncovered an authentication bypass in Web3Auth that could have led to full account takeover. In this deep dive, we break down how we found the issue and expose other authentication misconfigurations lurking in Web3. osec.io/blog/2025-07-0…

Meet Supa: your AI teammate that creates presentations, writes docs, finds leads, filter CVs, schedules meetings, and blasts emails—so you don’t have to! Try it now → supa.inc

Apply to attend #PHTalks in Jakarta, Indonesia 🇮🇩 🗓 July 23 — free in-person event 🔗 phtalks.ptsecurity.com/jakarta CFP open until July 4. Attendee registration open until July 11. I’m reaching out to offensive and defensive security people — red/blue teams, SOC, DFIR, vuln, and

Happy to talk there :)

I used to write many CTF writeups, but life got busy and I stopped. Still, I must remember that writeups helped me get to where I am today. So this is my first writeup of 2025, a Uniswap challenge from GreyCTF 2025 🙂 chovid99.github.io/posts/greyctf-…

Yay, got a new bounty #bugbountytips

Dear profs, don’t read this. Hey students: One-shot your docs & slides in seconds—APA & Chicago citations included. Need finishing touches? Magic Editor's got your back. Not cheating. Just saying goodbye to blank pages. Try the beta now for FREE 👉 author.space

Third time’s a charm 🙏🙏🙏

Getting 2nd place in Defcon finals for the third year in a row has triggered the great depression for the team xd

🥈 Thrilled to nab 2nd as Blue Water, teamed up with Luís Henrique Muniz at DEFCON CTF Final 33! 🙌 Congrats to Maple Mallard Magistrates for their 4th straight 1st 💪 We’re gunning for the crown next year! Join our crew to make it happen! DM us or drop us an email! 🚀 #DEFCON #CTF

Thanks for the memories International Cybersecurity Challenge TOKYO 2025. I enjoyed the event a lot, probably one of the best and most fun CTFs so far. The pwn challenges’ quality was top notch. Huge thanks to the ASEAN team for giving me the chance to represent, and huge thanks to the ICC organizers ❤️

Here is my writeup for the baby orqpy challenge, which is one of the pwn challenges during the Jeopardy session that only has 2 solves. I worked on this challenge together with Lord_Idiot. Thanks to hugeh0ge for making this challenge :D chovid99.github.io/posts/icc-2025/

NEW: ERC-4337 paymasters unlock powerful UX by abstracting gas costs, but they also add complexity and subtle bugs. We break down common pitfalls in real-world implementations and how to design production-ready paymasters. osec.io/blog/2025-12-0…