https://allakori.github.io/writeups/Technical writeups by Kossi Richard Allado covering CTFs, DFIR, web exploitation, pwn, Active Directory and threat hunting notes. 2026-05-14T13:48:23+01:00 Kossi Richard Allado https://allakori.github.io/writeups/ Jekyll © 2026 Kossi Richard Allado /writeups/assets/img/favicons/favicon.ico /writeups/assets/img/favicons/favicon-96x96.png 2026-05-14T10:00:00+01:00 2026-05-14T10:00:00+01:00 https://allakori.github.io/writeups/posts/volt-typhoon-intrusion/ Kossi Richard Allado

Splunk-based reconstruction of a Volt Typhoon-style intrusion using ADSelfService Plus, WMIC, PowerShell, web shells, Mimikatz, netsh proxying and event log cleanup evidence.

2026-04-29T18:00:00+01:00 2026-04-29T18:00:00+01:00 https://allakori.github.io/writeups/posts/csia-ctf-2026/ Kossi Richard Allado

First-place CSIA CTF 2026 writeups for team GHOSTSHELL, covering web exploitation, prototype pollution, JWT issues, Apache RCE, steganography, OSINT, reverse engineering and signal decoding.

2026-04-20T14:00:00+01:00 2026-04-20T14:00:00+01:00 https://allakori.github.io/writeups/posts/browzi-heap-exploitation/ Kossi Richard Allado

Heap exploitation writeup for Browzi MiniBrowser, abusing an unchecked img src copy to overwrite a heap function pointer and redirect rendering to win().

2026-03-15T12:00:00+00:00 2026-03-15T12:00:00+00:00 https://allakori.github.io/writeups/posts/deepwash-php-datetime/ Kossi Richard Allado

Web CTF writeup for deepwash, exploiting PHP DateTimeImmutable normalization behavior to satisfy strict hash constraints with a three-line payload.

2026-02-01T12:00:00+01:00 2026-02-01T12:00:00+01:00 https://allakori.github.io/writeups/posts/sokolo-ad-lab/ Kossi Richard Allado

Active Directory lab progress report covering initial access, SMB enumeration, SAM hash extraction, pass-the-hash, DPAPI investigation, BloodHound review, Kerberos tickets and RBCD attempts.