rvr | MindCrafters CTF Team

Writeups About Members Achievements Stats

rvr

Team Vice-captain

Joined March 2024

Experties

About

Security enthusiast who enjoys understanding how things work. Specializes primarily in web category.

Last flag captured on May 10, 2026.

Achievements

Flags

221

Bloods

1

CTFs

82

Writeups

7

11

9

10

Published on
May 10, 2026
Break The Syntax CTF 2026 - Web challenges
web
web
Break-The-Syntax-CTF-2026 BTS
Name
michalBB
Name
kerszi
Name
rvr
These tasks originate from Break The Syntax CTF 2026
Published on
July 7, 2025
No Hack No CTF 2025 - Reverse challenges
rev
rev
No-Hack-No-CTF-2025 No-Hack-No-CTF
Name
Grzechu
Name
michalBB
Name
rvr
Name
kerszi
These tasks originate from the reverse challenges at No Hack No CTF 2025 CTF
Published on
June 1, 2025
Grey Cat The Flag 2025 - Ezpz challenges
greyctf-2025 grey-cat-the-flag-2025
Name
kerszi
Name
ppp45
Name
rvr
These tasks originate from the Ezpz category at Grey Cat The Flag 2025
Published on
May 18, 2025
BreakTheSyntaxCTF 2025 - All web challenges
web
web
BtSCTF BtSCTF-2025 ldap ldap-injection ssti command-injection type-juggling magic-hash linux-privesc
Name
rvr
Hacking 4 webapps from Break The Syntax CTF 2025. The apps contain a number of different vulnerabilities: ldap injection, command injection, ssti, php type juggling and several privilege escalation techniques on Linux.
Published on
February 13, 2025
BITSCTF 2025 - WEB: Get into my cute small planner
web
web
BITSCTF BITSCTF-2025 xss dompurify csp unicode-overflow
Name
rvr
Hacking a note-taking app from BITSCTF 2025. The exploit leverages a UTF-8 to ASCII conversion issue to inject XSS that remains unnoticed by DOMPurify and uses angular.js from Cloudflare CDN to bypass CSP restrictions.
Published on
February 2, 2025
Nullcon Goa HackIM 2025 - WEB challenges
web
web
nullcon nullcon-2025 sqlinjection bcrypt ssti dns dig int-overflow
Name
AUXZAE
Name
michalBB
Name
null_byte
Name
rvr
Name
zBlxst
These tasks originate from the WEB category at CTF Nullcon Goa HackIM 2025
Published on
November 23, 2024
GlacierCTF - SkiData
web
web
xss glacierctf cve-2024-34064
Name
rvr
The challenge involved crafting an XSS payload to extract a flag from an HTML tag, leveraging a vulnerability in the processing of uploaded .xlsx files and exploiting xmlattr vulnerability in Jinja2.