https://freyxfi.github.io/A minimal, responsive and feature-rich Jekyll theme for technical writing. 2026-05-17T11:58:15+05:30 Frey https://freyxfi.github.io/ Jekyll © 2026 Frey /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2026-05-17T05:00:00+05:30 2026-05-17T05:00:00+05:30 https://freyxfi.github.io/posts/Initial-Access/ Frey

Update :) I’ve been so inactive on social media lately, and meanwhile everything changed. But what the hell was that, bro? Have you all seen the news? 47 0-days at Pwn2Own. Absolutely crazy. Moments like these remind you why you should never stop grinding. At the same time, it’s insanely motivating seeing how far the security world keeps pushing. Sorry for not keeping the blog updated. I was ...

2026-03-03T05:00:00+05:30 2026-03-03T08:56:04+05:30 https://freyxfi.github.io/posts/Broken-2FA/ Frey

Introduction Hello there, everyone! And guess what? We’re in 2026 awesome, right? I hope you’re all doing great in your own timelines. This blog is about a bug I found last month: the simplest 2FA bypass ever. I wanted to share it now because I finally fixed my laptop and I’m back to writing a lot again. Oh, and one more thing I updated my username from freyxfi to offsecrunner. Maybe playing...

2025-08-15T19:49:00+05:30 2025-08-15T19:49:00+05:30 https://freyxfi.github.io/posts/soupedecode01/ Frey

CTF Writeup: SOUPEDECODE #1 Overview This writeup documents the steps taken to complete a Capture The Flag (CTF) challenge targeting a Windows Server 2022 domain controller in the SOUPEDECODE.LOCAL domain. The objective was to gain initial access, escalate privileges, and retrieve the user.txt and root.txt flags. The process involved network scanning, enumeration, credential discovery, and priv...

2025-03-01T16:54:00+05:30 2025-06-30T23:02:47+05:30 https://freyxfi.github.io/posts/Week9-Rice-it-Fuck-up/ Frey

Another Note I failed and then I started again as I know this is a part of life, not the ending. Btw, in this blog, I will show how I riced up my Vim from the ordinary to the nerdy cool one. As other blogs were all about what I am doing, this will be about giving something to the community. Despite web security or Active Directory, can we talk about computers for once? What Happened Last Week...

2025-02-23T13:27:00+05:30 2025-02-23T13:27:00+05:30 https://freyxfi.github.io/posts/Week8-focusing/ Frey

Another Note Before starting, I must say this week was cool, and I learned that I am still far away from being called a pro! I looked around myself and found hyenas, but I don’t want to be in that crowd. So, I should leave all that behind and keep developing myself in the dark alley. I need to force myself to do the hard tasks. What Happened Last Week? Found 4 Bugs (actually 5) Got a ch...