Mark Lacore Mark Lacore mark@nerdymark.com

Senior Software Engineer. Python, cybersecurity, robotics, and CTF challenges.

nerdymark.com Home About Contact Resume Technology CTF Writeups Games Nerd Alert Now

Trust Issues CTF: Supply Chain Attack on a GitHub Actions Runner

  • ctf
2026-02-25 12:00:00 15 min read
Trust Issues CTF writeup: incident response tracing a trojanized pytest package exfiltrating secrets from a GitHub Actions self-hosted runner via Fernet-encrypted dead drops.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Migrating from JSON Files to DynamoDB with boto3

  • technology
2026-02-23 03:57:44 3 min read
How I moved my Flask blog from flat JSON files to AWS DynamoDB for durable storage, and migrated hardcoded secrets to environment variables.
Share via: 📋 🦋 f 𝕏
Mark Lacore

Wiz Cloud Security Championship - Cracked the Top 30

  • ctf
2026-02-14 12:00:00
Climbed from page 5 to #30 on the Wiz Cloud Security Championship leaderboard with 8 of 12 challenges solved and 137 points. Up from 3 challenges in September.
Wiz Cloud Security Championship - Cracked the Top 30
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Confession Booth CTF: Race Condition Privilege Escalation

  • ctf
2026-01-28 12:00:00 15 min read
Confession Booth CTF writeup: race condition exploit between user registration and permission assignment.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

State of Affairs CTF Challenge Writeup

  • ctf
2026-01-06 12:00:00 12 min read
State of Affairs CTF writeup: Terraform state poisoning via TF_DATA_DIR and malicious provider injection.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Malware Busters CTF Challenge Writeup

  • ctf
2025-12-21 12:00:00 18 min read
Malware Busters CTF writeup: Go binary reverse engineering with UPX, garble obfuscation, and AES-CBC.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Game of Pods CTF Challenge Writeup

  • ctf
2025-12-10 12:00:00 15 min read
Game of Pods CTF writeup: Kubernetes privilege escalation via SSRF, path traversal, and nodes/proxy.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Needle in a Haystack CTF Challenge Writeup

  • ctf
2025-10-07 12:00:00 10 min read
Needle in a Haystack CTF writeup: client-side bypass and GitHub OSINT to exploit exposed API secrets.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Meet 'nerdbot' - My Personal Robot Project

  • robotics
2025-09-18 14:30:00
Nerdbot: an autonomous robot companion built with Python, OpenCV, and computer vision.
Read more...
Share via: 📋 🦋 f 𝕏
Mark Lacore

Now Cross-posting to Bluesky with AT Protocol

  • technology
2025-09-18 08:30:00
Automated blog cross-posting to Bluesky using AT Protocol SDK with duplicate detection and rich previews.
Share via: 📋 🦋 f 𝕏
Mark Lacore
« Previous Page 2 of 4 Next »

Main Pages

  • Home
  • About
  • Contact
  • Resume
  • Now

Projects

  • Nerd Alert Trivia Game
  • Magic Frame Simulator
  • Caw Social Platform
  • CuteVid
  • Nerdbot personal AI robot
  • RDP Lottery
  • LinkedInalyzer
  • Rick Rubin Quote Generator
  • Wordle Winners
  • Wordle Solver
  • Hardle Solver
  • Bay Area Crime Hotspots
  • Games

Blog Categories

  • Technology
  • CTF Challenges
    • Azure OAuth Privilege Escalation
    • Needle in a Haystack
    • Game of Pods (Kubernetes)
    • Malware Busters (Reverse Engineering)
    • State of Affairs (Terraform)
    • Confession Booth (Race Condition)
    • Trust Issues (Supply Chain)
    • Happy Birthday S3 (Multi-Service AWS)
  • Robotics
  • Gaming
  • Twitter/X
  • Threads
  • GitHub
  • Updates

Find Me Online

  • GitHub
  • Bluesky
  • LinkedIn
  • YouTube
  • TikTok
  • Email
Privacy Policy • Terms of Service • Open Source
© 2026 nerdymark.com. All Rights Reserved.
🏳️‍🌈 🏳️‍⚧️ 🇺🇸 🇵🇸 🧩
▲