Writeup Template
Use this format for CTF and security writeups. Keep evidence tight and focus on impact, reproduction, and fixes.
1. Context
- Challenge:
- Target:
- Scope:
- Constraints:
- Success criteria:
2. Executive summary
One paragraph describing the issue, impact, and fix.
3. Threat model
- Assets:
- Entry points:
- Trust boundaries:
- Attacker goal:
4. Recon and enumeration
- Discovery steps:
- Useful endpoints:
- Environment notes:
5. Exploit path
- Step one with payload or request.
- Step two that proves control.
- Step three that demonstrates impact.
6. Evidence and artifacts
- Request ID:
- Hashes:
- Logs:
- Screenshots:
7. Fix and hardening
- Immediate fix:
- Guardrails:
- Regression tests:
8. Lessons learned
- Signals to monitor:
- Detection automation: