https://ksal.netlify.app KSAL writeups for CTF events, challenge solves, technical walkthroughs, and competition notes from the team. en-us KSAL Thu, 16 Apr 2026 19:55:17 GMT https://ksal.netlify.app/writeups/univsthreats-26-quals https://ksal.netlify.app/writeups/univsthreats-26-quals A site-native UniVsThreats 26 Quals event writeup that preserves Alpet Gexha's full challenge archive in one place. Alpet Gexha Event Recapeventunivsthreatsmobileforensicsreversewebsteganoblockchain Fri, 27 Feb 2026 00:00:00 GMT https://ksal.netlify.app/writeups/thjcc-2026 https://ksal.netlify.app/writeups/thjcc-2026 A KSAL event writeup for THJCC CTF 2026 that keeps the full challenge archive on-site while preserving two detailed forensic and steganography solves. javelin, Alpet Gexha Event Recapeventthjccforensicssteganographysstvzipcrypto Wed, 25 Feb 2026 00:00:00 GMT https://ksal.netlify.app/writeups/nullctf-2025-pcap https://ksal.netlify.app/writeups/nullctf-2025-pcap Recovering a flag from captured network traffic by identifying an unusual HTTP multipart upload and extracting the base64-encoded payload buried inside it. Alpet Gexha Forensicsforensicspcapwiresharknetworkbase64http Sat, 08 Nov 2025 00:00:00 GMT https://ksal.netlify.app/writeups/bsides-prishtina-2025-jwt https://ksal.netlify.app/writeups/bsides-prishtina-2025-jwt A JWT authentication challenge where switching the algorithm from RS256 to HS256 and signing with the server's own public key grants unrestricted admin access. javelin Webjwtwebauthenticationalgorithm-confusionrs256hs256 Sun, 14 Sep 2025 00:00:00 GMT