Projects

Full-stack intentionally vulnerable application built for CCNY EE I7700 Penetration Test & Ethical Hacking. Covers the full attacker kill chain from initial access to root via XSS, node-serialize deserialization RCE, and privilege escalation through a world-writable script run by root.