Second machine of Season 9 GACHA HackTheBox.

A Linux machine that is vulnerable to a Next.js auth vulnerability.

:( :D

Neovault is a trusted banking app for fund transfers and downloading transaction history. You’re invited to explore the app, find potential vulnerabilities, and uncover the hidden flag within.

JinjaCare is a web application designed to manage COVID-19 vaccination records. It allows users to view their personal information, medical history, and generate digital vaccination certificates. Your task is to discover vulnerabilities in the system and extract the hidden flag.

My journey in HackTheBox Cyber Apocalypse CTF 2025 is fun and challenging, I gain some new knowledge and realization. I only managed to solved very easy - medium challenges from various categories. I also tackle some challenges but got stuck due to lack of knowledge and not thinking critically. This indicates my current knowledge and areas I need to improve to become better. In this writeup i didn't include AI and Coding category i solved.