🧠 writeup-vault

Welcome to my personal archive of cybersecurity research and writeups.
Exploring vulnerabilities, malware behavior, exploitation techniques, and the occasional “wait, that actually worked?” moment.

---

Categories

🎄 Advent of Cyber

TryHackMe’s annual December cybersecurity challenge series - 25 days of festive hacking.

• Day 1 - Linux CLI - Shells Bells

🔓 Security & Exploitation

Deep dives into CVEs, penetration testing, and real-world attack chains.

• 🔐 Grafana, Passwords, and Poor Life Choices: CVE-2021-43798
  From path traversal to root access

🧪 Experimental Research

Proof-of-concepts, novel techniques, and creative exploitation methods.

• 🧨 From Pixels to Payload - DLL Search Order Hijacking
  Part 2: Exploiting DLL loading behavior

• 🖼️ From Pixels to Payload
  Part 1: When images aren’t just images

🦠 Malware Analysis

Reverse engineering, behavioral analysis, and IOC extraction from real-world samples.

• 🧪 Discord InfoStealer (Lapresse)
  Analyzing a Discord-based information stealer

---

🎯 Latest Updates

December 2025

• Started Advent of Cyber 2025 writeups

November 2025

• Added Grafana CVE-2021-43798 complete exploitation chain
• New writeup format: More memes, less corporate-speak

---

🔍 About

This vault contains:

• ✅ CVE exploitations and real-world attack chains
• ✅ Malware reverse engineering and behavioral analysis
• ✅ Creative exploitation techniques and PoCs
• ✅ Lessons learned from breaking stuff

---

📫 Connect

• GitHub: @Yuriibe
• Blog: yuriibe.github.io/writeup-vault/

“The best way to understand security is to break it.”