$ whoami
Fredmark Ivan "Kur0sh1ro" Dizon
$ cat roles.txt
2nd Year BSIT Student · A1SBERG Member · CTF Player · Security Researcher · Bug Bounty Hunter
Skills
Programming Languages
- Python
- C
- Ruby
- Go
Technical Skills
- Offensive Security
- Malware Development
- Web Development
Others
- Fluent in English and Filipino
- Semi-fluent in Japanese (everyday conversation, reads Hiragana/Katakana, basic grammar)
Certifications & Achievements
Certifications
Achievements
- Secured 2nd place in a Java Programming Competition at ACLC Skills Camp.
- Secured 120th place in HTB's University CTF. Solved 31/49 challenges.
- Ranked #1 in the Philippines on TryHackMe for the month.
- Ranked #112 in the Philippines on TryHackMe of all time.
- Champion in the SEEN CTF 2025.
- Ranked #2 in the Trend Micro uCTF 2025 Preliminaries.
- Ranked #3 in DECODE 2025 uCTF Finals.
- Champion in the Hack4Gov 2025 Regionals.
- Top 1 scorer in the Hack4Gov 2025 Regionals.
- Top 6 in the Hack4Gov 2025 Nationals.
Projects
Seclume
A robust, command-line file archiving tool designed for secure archiving, encryption, and compression of files and directories.
View ProjectDarkJester
An advanced ransomware developed in Python, offering a wide range of capabilities that set it apart from typical ransomware.
View ProjectAsuka
A Python-based phishing framework built for educational and authorized security testing: clones a target site, hosts it locally, and captures credentials, session data, and user interactions.
View ProjectKiroku
A sophisticated keylogger designed for capturing and monitoring user activity on a target system, transmitting collected data to a remote server at regular intervals.
View ProjectSokushi
A potent surveillance tool developed by A1SBERG that establishes a remote connection between a victim's system and the attacker's server.
View ProjectEyrie
Eyrie is a comprehensive password management toolkit that allows secure storage, organization, and handling of sensitive credentials.
View ProjectStealthy Reverse-Shell Attack In Memory C# Beaconing
This attack implements a stealthy reverse shell mechanism designed to establish persistent, intermittent command-and-control (C2) communications between a compromised Windows host and an attacker's server.
View ProjectHalo
Halo is a lightweight, fully automated file organizer for Windows. It dynamically sorts your files based on their extensions, keeping your Downloads, Documents, Pictures, Music, and Videos folders clean and organized — all without manual intervention.
View ProjectYoloScript
YoloScript is a meme-flavored, interpreted programming language written in C++. Every keyword is pulled straight from internet slang — yolo declares a variable, sendit prints output, bruh is your if, and fr opens a block. It's silly on the surface, but underneath sits a real tree-walk interpreter with a surprising feature set: first-class functions, arrays, floats, string builtins, a for-loop, and — its most distinctive trick — a Mood Engine that changes how arithmetic behaves at runtime.
View ProjectWrite-Ups
TryHackMe Rabbit Store Boot2Root — Writeup
Abused a mass assignment flaw to activate privileged functionality, exploited SSRF to access internal API endpoints, achieved remote code execution through Jinja2 SSTI, and leveraged an exposed Erlang cookie to administer RabbitMQ, extract credential material, and obtain root access.
Read Write-UpTryHackMe Moebius Boot2Root—Writeup
Exploited a nested SQL injection vulnerability to achieve Local File Inclusion (LFI), transformed file read access into remote code execution through PHP filter chains, bypassed disabled PHP functions to obtain a shell inside a Docker container, and escaped the container by mounting the host filesystem to achieve full system compromise.
Read Write-UpTryHackMe M4tr1x: Exit Denied Boot2Root—Writeup
Abused exposed vulnerability disclosures to build a targeted password attack, cracked a GPG-encrypted archive to recover authentication material, reverse engineered a custom SSH-TOTP implementation to generate valid login tokens, and exploited a misconfigured Pandoc SUID binary to overwrite sensitive files and obtain root privileges.
Read Write-UpTryHackMe Event Horizon—Writeup
Performed network forensics and malware analysis to reconstruct a phishing-based intrusion, extracted and decoded malicious PowerShell payloads, reverse engineered Covenant C2 staging mechanisms, recovered cryptographic keys from memory artifacts, and decrypted encrypted command-and-control traffic to uncover attacker activity and credential theft.
Read Write-UpTryHackMe Breaking RSA—Writeup
Exploited a weak RSA implementation by applying Fermat's Factorization to recover the prime factors of the public modulus, reconstructed the RSA private key, and leveraged the recovered key material to compromise SSH authentication and obtain system access.
Read Write-UpTryHackMe Soupedecode 01—Writeup
Enumerated Active Directory users through RID cycling, performed password spraying to obtain initial domain access, leveraged Kerberoasting to recover service account credentials, and utilized Pass-the-Hash techniques to compromise the Domain Controller and obtain administrative privileges.
Read Write-UpTryHackMe Plant Photographer Challenge—Writeup
Leveraged SSRF to enumerate internal services and read local files, extracted sensitive application data to reconstruct the Werkzeug debug PIN, and abused the exposed Flask/Werkzeug debugger console to execute arbitrary commands on the target.
Read Write-UpTryHackMe Operation Endgame—Writeup
Enumerated Active Directory attack paths using BloodHound, leveraged Kerberoasting and targeted SPN manipulation through GenericWrite permissions to recover service account credentials, abused delegated rights for lateral movement, and compromised the Domain Controller to achieve full domain compromise.
Read Write-UpHackTheBox Snapped— Writeup
Abused CVE-2026-27944 to obtain encrypted Nginx UI backups and exposed decryption keys, extracted and cracked bcrypt credentials for SSH access, then exploited CVE-2026-3888 (snap-confine TOCTOU race condition) to gain root access via dynamic linker hijacking.
Read Write-UpHackTheBox Principal— Writeup
Forged privileged JWTs through CVE-2026-29000 in pac4j-jwt, extracted deployment credentials from an internal management API, and leveraged a compromised SSH CA private key to sign a root-authenticated certificate and obtain unrestricted access.
Read Write-UpHackTheBox Pterodactyl— Writeup
Leveraged an unauthenticated path traversal vulnerability in Pterodactyl Panel to access PEAR components and gain remote code execution, extracted Laravel database credentials to recover and crack bcrypt password hashes for SSH access, and chained CVE-2025-6018 with CVE-2025-6019 to abuse Polkit/UDisks permissions and obtain root privileges.
Read Write-UpHackTheBox Hercules— Writeup
Leveraged LDAP Injection to gain a foothold in Active Directory, exploited AD CS certificate enrollment weaknesses, abused the msDS-KeyCredentialLink attribute through Shadow Credentials for persistent account takeover, and utilized Resource-Based Constrained Delegation to compromise privileged accounts and achieve domain dominance.
Read Write-UpHackTheBox Cyber Apocalypse 2025 — Twin Oracle CTF Writeup
Cryptanalyzed a Blum-Blum-Shub (BBS) pseudo-random number generator to recover internal state, leveraged the recovered output to access a restricted RSA oracle, and exploited oracle responses to iteratively recover protected plaintext through an adaptive chosen-ciphertext attack.
Read Write-UpHackTheBox Business CTF: Vault Of Hope—OmniWatch CTF Writeup
Exploited a CRLF Injection vulnerability to poison the Varnish cache and manipulate cached responses, leveraged a race condition involving the automated reporting bot to gain unauthorized access to privileged functionality, performed SQL injection to extract sensitive application data, and abused weak signature validation mechanisms to forge authenticated requests and achieve stored XSS execution.
Read Write-UpHackDonalds Intigriti CTF 2025
Abused the X-Middleware-Subrequest header to bypass Next.js middleware-based authentication controls, accessed restricted administrative endpoints, and exploited XML External Entity (XXE) injection to perform arbitrary file reads and extract sensitive information from the underlying system.
Read Write-Up