Profile Avatar Pro

Ichiko

✦ Legend ✦
Online

I break systems legally and rank in the top 70 worldwide. Senior hacker from the Philippines with 23 flags and counting.

Activity

49 active days in the last year
Less More

Rank Progress

✦ Legend ✦
Max Rank

Achievements

Streak Starter
Streak Master
Lab Rat
Lab Expert
Lab Master
Scholar
Top 10
Pro Member
JWTWeb SecurityToken AuthenticationCryptographyAlgorithm ConfusionRS256HS256Token ForgeryNetwork AnalysisPacket CaptureWiresharkProtocol AnalysisCommand InjectionShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity AssessmentWireless SecurityWEP CrackingRC4 AnalysisPacket AnalysisCryptographic AttacksLegacy Protocol ExploitationCSRFCross-Site Request ForgerySession SecuritySocial EngineeringForm SecurityHTTP SecurityState ManagementReverse EngineeringBinary AnalysisCrackmeKeygenobjdumpGDBELFARM64 AssemblyStatic AnalysisGhidraSession ManagementAuthenticationPrivilege EscalationPHPLFIPassword CrackingAuthentication BypassDirectory TraversalQR Code AnalysisImage AnalysisData ExtractionSteganographyDigital ForensicsDNSData ExfiltrationBase64 DecodingCryptanalysisClassical CryptoPattern RecognitionData EncodingJavaScriptWeb DevelopmentHexadecimalBrowser DevToolsJenkinsCI/CDDevOpsPentestAutomationMD5Rainbow TablesNetwork ReconnaissanceService DiscoveryDatabase ForensicsCLI UsageData RecoveryIncident ResponseBase64Hex EncodingRedisWeb InspectionHTML AnalysisAPI SecurityWeb HackingLogic FlawsToken ManipulationBase64 EncodingAuthorization BypassPath ManipulationFile InclusionBlockchain AnalysisBitcoinOP_RETURNHex DecodingForensic AnalysisPDF ForensicsFile AnalysisMetadataHidden DataForensic ToolsLSBForensicsPythonAudio AnalysisTransposition CipherRail FenceFlaskDebug ModeMemory AnalysisPath TraversalCGIFile AccessInput ValidationLogic FlawParameter ManipulationWeb ExploitationNetwork SecuritySQL InjectionDatabase SecurityXSSCross-Site ScriptingStored XSSSession HijackingClient-Side SecurityDOM ManipulationClaims ManipulationTime-Based AttacksSignature CrackingLocal File InclusionUser-Agent Log PoisoningRemote Code ExecutionApache SecurityLog AnalysisXXEXML SecurityFile DisclosureExternal EntityVulnerability AssessmentBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationSSRFServer-Side Request ForgeryAWS MetadataCloud SecurityIAM CredentialsAWS EC2File UploadBypass TechniquesWeb ShellsPost ExploitationNoSQL InjectionMongoDBVisibility ControlsAccess Control BypassSecurity TestingOperator ExploitationPDF SecurityDictionary AttacksDocument SecurityBrute Force AttacksServer-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionKeePass 4.x SecurityDirect Brute ForcePassword Manager AssessmentModern CryptographySecurity Tool LimitationsWebCTF BasicsMemory ForensicsTool UsageROT13 EncodingHex EditorsData StructuresMD5 CrackingSource Code AnalysisWeb Application SecurityPassword AttacksClassical CiphersHistorical CryptanalysisWindows RegistryPersistence AnalysisMalware AnalysisHTTP HeadersIP SpoofingInformation GatheringJinja2 ExploitationFile DiscoveryCommand Line ToolsHTTP ProtocolAttack DetectionLDAP InjectionDirectory ServicesEnterprise SecurityCRLF InjectionRedis Command InjectionCache PoisoningProtocol ManipulationDocument DatabasesZIP Password CrackingJohn the RipperfcrackzipBrute ForceArchive SecurityPython PickleEnterprise DeserializationCorporate Backup SystemsDisaster Recovery ExploitationConfiguration Import AttacksWiFi SecurityWPA CrackingWireless Penetration TestingDeobfuscationCode AnalysisGit ForensicsVersion Control SecurityRepository AnalysisPenetration TestingSecret RecoveryOSINTSUID BinariesLinux SecurityBinary ExploitationDocker Registry APIContainer SecurityAPI ManipulationRegistry ExploitationFrequency AnalysisNetwork ForensicsDNS AnalysisTraffic AnalysisGraphQLSchema IntrospectionInjectionCookie ManipulationFilter BypassApache AuthenticationDirectory EnumerationWeb ReconnaissanceAdministrative Panel DiscoverySecurity BypassClient-Side ManipulationIDORRace ConditionsTiming AttacksConcurrent ExploitationPrototype PollutionNode.js SecurityJavaScript ExploitationObject ManipulationInput Validation BypassModern Web VulnerabilitiesWebDAV ExploitationRemote File AccessHTTP MethodsWeb Server SecurityFile System EnumerationYAML DeserializationPyYAML ExploitationConfiguration InjectionPython SecurityUnsafe DeserializationFile Processing SecurityPath InjectionFile System SecurityPolyalphabetic CiphersURL ManipulationInternal Network AccessProtocol BypassEmail ForensicsHeader AnalysisPhishing DetectionDigital InvestigationRequest SmugglingHash CrackingPassword AnalysisSecurity ToolsType JugglingHash AnalysisWeb EnumerationReconnaissanceGitVersion ControlRegex BypassSQLiteUNION-Based SQLiOffice SecurityHash ExtractionHashcatWindows SecurityNTLMhashcatLinuxCommand LineFile System NavigationHidden FilesgrepfindUnicodeWeb ForensicsText AnalysisCSSMedia QueriesSource AnalysisDevToolsOAuth 2.0Web ReconConfiguration ExploitsXORKnown-Plaintext AttackIDOR ExploitationZip Slip VulnerabilityInternal Service DiscoveryBackup Service ExploitationSudo Vim ExploitationWPAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationSSHFilter EvasionApache TomcatWAR DeploymentDefault CredentialsSudoLinux CapabilitiesReverse ShellSystem EnumerationFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationMass AssignmentPassword ReuseLinux Privilege EscalationMYSQLIRCEJWT ManipulationSSH ExploitationLog InjectionFile EnumerationCron JobsConfiguration AnalysisHeadless CMSAPI EnumerationInformation DisclosureRevision HistoryToken AbuseSSTISSH Brute ForcePickle DeserializationDirectory FuzzingX-Forwarded-For SpoofingBruteforceffufNewline InjectionLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysispwntoolsropperWEBFile PermissionsHost Header InjectionPassword Reset PoisoningGITAccess ControlIP SPOOFINGFTPFile Upload BypassPHP SecurityWeb Shell ExploitationView Source CodeHTMLBroken Access ControlCookie PoisoningSession TamperingNmapNmap CommandsTelnetPort ScanningSecurity Through ObscurityView SourceBroken AuthenticationDeveloper ToolsLearning PathCapture The FlagCTFFlag SubmissionUUIDGetting StartedCyber Security Fundamentals
JWT Bypass
JWT Bypass Challenge
50 XP Jul 08, 2026
JWT Algo Confusion
JWT Algo Confusion Challenge
50 XP Jul 08, 2026
Packet Pursuit
Packet Pursuit Challenge
50 XP Jul 08, 2026
50 XP Jul 08, 2026
WEP Cracker
WEP Cracker Challenge
50 XP Jul 08, 2026
CSRF Bank Transfer
CSRF Bank Transfer Challenge
50 XP Jul 07, 2026
400 XP Jul 07, 2026
Session Switch
Session Switch Challenge
50 XP Jul 04, 2026
Corporate Breach
Corporate Breach Challenge
50 XP Jul 04, 2026
QR Code Quest
QR Code Quest Challenge
50 XP Jul 04, 2026
DNS Exfil
DNS Exfil Challenge
50 XP Jul 04, 2026
Crypto Cipher
Crypto Cipher Challenge
50 XP Jul 04, 2026
Hex Hunt
Hex Hunt Challenge
50 XP Jul 04, 2026
Snapchat Exposed
Snapchat Exposed Challenge
50 XP Jul 03, 2026
Get the Password
Get the Password Challenge
50 XP Jul 03, 2026
Red is Dead
Red is Dead Challenge
50 XP Jul 03, 2026
Base64 Detective
Base64 Detective Challenge
50 XP Jul 03, 2026
API Breaker
API Breaker Challenge
50 XP Jul 03, 2026
Corporate Breach 2
Corporate Breach 2 Challenge
50 XP Jul 03, 2026
Blockchain Secrets
Blockchain Secrets Challenge
50 XP Jul 03, 2026
PDF Trap
PDF Trap Challenge
50 XP Jul 03, 2026
Pixel Puzzler
Pixel Puzzler Challenge
50 XP Jul 03, 2026
Sonic Cipher
Sonic Cipher Challenge
50 XP Jul 03, 2026
Rail Fence
Rail Fence Challenge
50 XP Jul 03, 2026
Flask Error
Flask Error Challenge
50 XP Jul 03, 2026
Path Traversal
Path Traversal Challenge
50 XP Jul 03, 2026
API Logic Flaw
API Logic Flaw Challenge
50 XP Jul 03, 2026
Ping Pwn
Ping Pwn Challenge
50 XP Jul 03, 2026
Auth Bypass
Auth Bypass Challenge
50 XP Jul 03, 2026
XSS Playground
XSS Playground Challenge
50 XP Jul 01, 2026
50 XP Jul 01, 2026
LFI Log Poison
LFI Log Poison Challenge
50 XP Jul 01, 2026
XXE Exposed
XXE Exposed Challenge
50 XP Jul 01, 2026
SQL Injection
SQL Injection Challenge
50 XP Jul 01, 2026
URL Scanner
URL Scanner Challenge
50 XP Jun 29, 2026
File Upload Bypass
File Upload Bypass Challenge
50 XP Jun 29, 2026
NoSQL Injection
NoSQL Injection Challenge
50 XP Jun 29, 2026
50 XP Jun 29, 2026
Template Injection
Template Injection Challenge
50 XP Jun 29, 2026
KeePass Breaker
KeePass Breaker Challenge
50 XP Jun 29, 2026
Stego Hunt
Stego Hunt Challenge
50 XP Jun 28, 2026
Memory Forensics
Memory Forensics Challenge
50 XP Jun 28, 2026
Binary Secrets
Binary Secrets Challenge
50 XP Jun 28, 2026
50 XP Jun 28, 2026
50 XP Jun 28, 2026
Registry Hunter
Registry Hunter Challenge
50 XP Jun 28, 2026
IP Spoofing Admin
IP Spoofing Admin Challenge
50 XP Jun 28, 2026
Template Injector
Template Injector Challenge
50 XP Jun 27, 2026
Log Hunter
Log Hunter Challenge
50 XP Jun 27, 2026
LDAP Injector
LDAP Injector Challenge
50 XP Jun 27, 2026
50 XP Jun 27, 2026
MongoDB Injector
MongoDB Injector Challenge
50 XP Jun 27, 2026
ZIP Cracker
ZIP Cracker Challenge
50 XP Jun 27, 2026
50 XP Jun 27, 2026
50 XP Jun 26, 2026
Hack This Site
Hack This Site Challenge
50 XP Jun 26, 2026
Git Secrets Hunter
Git Secrets Hunter Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
Registry Hijacker
Registry Hijacker Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
50 XP Jun 26, 2026
GraphQL Gateway
GraphQL Gateway Challenge
50 XP Jun 26, 2026
Button Activator
Button Activator Challenge
50 XP Jun 26, 2026
Cookie Forge
Cookie Forge Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
50 XP Jun 26, 2026
Header Hijacker
Header Hijacker Challenge
50 XP Jun 26, 2026
IDOR Explorer
IDOR Explorer Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
50 XP Jun 26, 2026
WebDAV Explorer
WebDAV Explorer Challenge
50 XP Jun 26, 2026
YAML Bomb
YAML Bomb Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
50 XP Jun 26, 2026
SSRF Validator
SSRF Validator Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
HTTP Smuggling
HTTP Smuggling Challenge
50 XP Jun 26, 2026
Crack SHA1 Hash
Crack SHA1 Hash Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
Backup Hunter
Backup Hunter Challenge
50 XP Jun 26, 2026
Git Exposed
Git Exposed Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
50 XP Jun 26, 2026
50 XP Jun 26, 2026
Shadow Cracker
Shadow Cracker Challenge
50 XP Jun 26, 2026
50 XP Jun 26, 2026
SQL Injection Test
SQL Injection Test Challenge
50 XP Jun 26, 2026
Phantom Text
Phantom Text Challenge
50 XP Jun 26, 2026
Fine Print
Fine Print Challenge
50 XP Jun 26, 2026
Token Trust
Token Trust Challenge
50 XP Jun 26, 2026
XOR Reuse
XOR Reuse Challenge
50 XP Jun 26, 2026
700 XP Jun 26, 2026
700 XP Jun 26, 2026
700 XP Jun 25, 2026
400 XP Jun 24, 2026
200 XP Jun 23, 2026
Compromised 1
Compromised 1 Medium
400 XP Jun 22, 2026
Matsudo
Matsudo Medium
400 XP Jun 22, 2026
Internal
Internal Hard
700 XP Jun 22, 2026
100 XP Jun 20, 2026
Query Quake
Query Quake Medium
400 XP Jun 18, 2026
200 XP Jun 18, 2026
200 XP Jun 17, 2026
400 XP Jun 17, 2026
FortiPy
FortiPy Hard
700 XP Jun 16, 2026
Pickle Jar
Pickle Jar Medium
400 XP Jun 16, 2026
700 XP Jun 15, 2026
AlVault
AlVault Medium
400 XP Jun 15, 2026
Alpwned
Alpwned Medium
400 XP Jun 14, 2026
400 XP Jun 12, 2026
Host Hijack
Host Hijack Medium
400 XP Jun 11, 2026
Traversed
Traversed Medium
400 XP Jun 10, 2026
ClearDesk
ClearDesk Medium
400 XP Jun 04, 2026
Beyond Echo
Beyond Echo Medium
200 XP Jun 04, 2026
200 XP May 11, 2026
Spoof!
Spoof! Easy
100 XP May 09, 2026
Anonymous
Anonymous Easy
100 XP May 09, 2026
FiPloit
FiPloit Easy
200 XP May 08, 2026
Include me
Include me Easy
100 XP May 05, 2026
50 XP May 04, 2026
Hack the Login
Hack the Login Very Easy
50 XP Apr 22, 2026
Pipes and data pipelines 1 XP Jul 08, 2026
Users, groups, and permissions 1 XP Jul 08, 2026
Filesystem navigation 1 XP Jul 08, 2026
Process management 1 XP Jul 08, 2026
Searching for what matters 1 XP Jul 08, 2026
Reading and manipulating files 1 XP Jul 08, 2026
Your first terminal session 1 XP Jul 08, 2026
Network commands 1 XP Jul 08, 2026
Daily Hack Solved - Pivot three hops to the vault +10 XP
33 min ago
Daily Hack Solved - Dox the domain owner +10 XP
1 day ago
Active for 1 days
1 day ago
Daily Hack Solved - Decode the calldata +10 XP
3 days ago
Daily Hack Solved - The none algorithm +10 XP
3 days ago
Daily Hack Solved - Find the SQL injection sink +10 XP
4 days ago
Profile Updated +3 XP
5 days ago
Chapter Completed - Network commands +1 XP
5 days ago
Chapter Completed - Process management +1 XP
5 days ago
Chapter Completed - Pipes and data pipelines +1 XP
5 days ago
Chapter Completed - Users, groups, and permissions +1 XP
5 days ago
Chapter Completed - Searching for what matters +1 XP
5 days ago
Chapter Completed - Reading and manipulating files +1 XP
5 days ago
Chapter Completed - Filesystem navigation +1 XP
5 days ago
Chapter Completed - Your first terminal session +1 XP
5 days ago
Flag Found - JWT Bypass +50 XP
5 days ago
Flag Found - JWT Algo Confusion +50 XP
5 days ago
Flag Found - Packet Pursuit +50 XP
5 days ago
Flag Found - Shell Command Scanner +50 XP
5 days ago
Flag Found - WEP Cracker +50 XP
5 days ago
Daily Hack Solved - ZIP in disguise +10 XP
6 days ago
Flag Found - CSRF Bank Transfer +50 XP
6 days ago
Daily Hack Solved - The comment leak +10 XP
6 days ago
6 days ago
Active for 2 days
1 week ago
Daily Hack Solved - Leak the app admin token +10 XP
1 week ago
Flag Found - Session Switch +50 XP
1 week ago
Flag Found - Corporate Breach +50 XP
1 week ago
Flag Found - QR Code Quest +50 XP
1 week ago
Flag Found - DNS Exfil +50 XP
1 week ago
Flag Found - Crypto Cipher +50 XP
1 week ago
Flag Found - Hex Hunt +50 XP
1 week ago
Flag Found - Snapchat Exposed +50 XP
1 week ago
Flag Found - Get the Password +50 XP
1 week ago
Flag Found - Red is Dead +50 XP
1 week ago
Flag Found - Base64 Detective +50 XP
1 week ago
Flag Found - API Breaker +50 XP
1 week ago
Flag Found - Corporate Breach 2 +50 XP
1 week ago
Flag Found - Blockchain Secrets +50 XP
1 week ago
Flag Found - PDF Trap +50 XP
1 week ago
Flag Found - Pixel Puzzler +50 XP
1 week ago
Flag Found - Sonic Cipher +50 XP
1 week ago
Flag Found - Rail Fence +50 XP
1 week ago
Flag Found - Flask Error +50 XP
1 week ago
Flag Found - Path Traversal +50 XP
1 week ago
1 week ago
Flag Found - API Logic Flaw +50 XP
1 week ago
Flag Found - Ping Pwn +50 XP
1 week ago
Flag Found - Auth Bypass +50 XP
1 week ago

Your Certificate is Ready!

View and share your Certificate of Achievement

View Certificate
16,000+ Hackers 100+ Labs & Courses Free
Start Hacking Free