Offense-Driven
Cybersecurity.

We break things so you do not have to find out the hard way. CTFSecurity delivers professional penetration testing, red team operations, and open-source security education for the community.

Request a Pentest Free Training
Responsible Disclosure
Open Source Community
CTF Competitors
0
YouTube Subscribers
0
Discord Members
0
CTFs Competed
0
Writeups Published
Services

What We Do

Professional offensive security engagements delivered with precision, documentation, and clear remediation guidance.

Web Application Penetration Testing

Comprehensive assessment covering OWASP Top 10, business logic flaws, authentication bypass, and injection chains. Delivered with full proof-of-concept documentation and remediation steps.

Request engagement

Network Security Assessment

Internal and external network testing, Active Directory attacks, lateral movement, and privilege escalation chains. We trace every path an attacker could take through your infrastructure.

Request engagement

Red Team Operations

Full adversary simulation targeting people, processes, and technology with stealth and persistence. Tests your detection and response capabilities against a real threat actor scenario.

Request engagement

CTF Training and Security Consulting

Structured CTF coaching, security workshops, code and architecture review, and ad hoc consulting. We close knowledge gaps and help you build a security posture that holds under pressure.

Get in touch
Training

Free Security Education

Open-source cybersecurity learning across platforms. Everything we create is free and community-first.

YouTube Channel

CTF walkthroughs, tool tutorials, and beginner-to-advanced security content

3,100+ subscribers

Twitch Live Streams

Live CTF solving sessions, penetration testing walkthroughs, and Q&A

Live every week

Discord Community

CTF team channels, challenge help, and security networking

150+ members

GitHub

Open-source tools, scripts, and all public writeups and research

Open source
Latest Videos
View all

Loading latest videos...

YouTube API connects in Phase 2
Portfolio

Selected Work

View GitHub
Web Pentest

OWASP Juice Shop Full Audit

Complete penetration test of the OWASP Juice Shop reference application covering all vulnerability categories, attack chains, and documented remediation paths.

Burp Suite SQLi XSS JWT
CTF Win

HackTheBox Pro Labs - Dante

Completed the Dante Pro Lab from HackTheBox, a full enterprise network simulation involving multi-host pivoting, Active Directory exploitation, and privilege escalation.

Active Directory Pivoting Kerberoast
Open Source

PwnShop Platform

Self-hosted CTF challenge platform built for the community, running on Railway with a custom challenge management system and scoreboard.

Node.js Railway CTF Platform
Community

Join the Community

1,800 security enthusiasts, CTF players, and professionals learning and competing together. Free to join, always will be.

Join Discord Subscribe on YouTube Support Us
r007us3r
4yr
In the field
About

Who We Are

CTFSecurity is an offensive cybersecurity firm founded by r007us3r, built on the belief that security knowledge should be accessible to everyone. We operate at the intersection of professional security services and open-source education.

From competitive CTF participation to real-world penetration testing engagements, every service we offer is grounded in hands-on, practitioner-level experience.

  • Active CTF competitors with ranked placements on HackTheBox and TryHackMe
  • Free training content across YouTube, Twitch, and Discord
  • Professional penetration testing with full written reports
  • Committed to responsible disclosure and ethical security practice
Work With Us
Blog

Writeups and Research

All Posts
CTF Writeup Apr 2025

Breaking Down a Blind SQLi Chain in HackTheBox: Freelancer

A step-by-step walkthrough of exploiting a blind SQL injection vulnerability to achieve remote code execution on the Freelancer machine.

Read writeup
Pentest Notes Mar 2025

Active Directory Attacks: Kerberoasting to Domain Admin

A practical methodology for escalating from a low-privileged domain user to Domain Admin through Kerberoasting, AS-REP Roasting, and DCSync.

Read post
Tutorial Feb 2025

Setting Up Your First CTF Environment on Kali Linux

A beginner-friendly guide to building a proper CTF toolkit from scratch, covering tools, wordlists, directory structure, and workflow habits.

Read tutorial
Contact

Hire Us

Ready to test your defenses? Fill out the form and we will get back to you within 24 hours.

Engagement Details

We accept penetration testing, red team, consulting, and training engagements. All work is conducted under a signed scope agreement.

hello@ctfsecurity.com
Response within 24 hours
NDA available on request
All engagements scoped and signed