Muhammad Husnain Zargar
Jr. Penetration Tester • Cybersecurity Blogger
I’m a Jr. Penetration Tester with over 1+ years of experience in web application pentesting.
Through HackWithHusnain, I share my journey, real-world testing experiences, security research, exploit techniques, and CTF write-ups to help others learn and grow in the cybersecurity field.
“I blog to give back to the cybersecurity community — sharing real-world penetration testing insights, hands-on labs, and CTF writeups so others can learn, break, and grow ethically.”
— HackWithHusnain
About Me & This Blog
Hi, I’m Muhammad Husnain Zargar (AKA 0xSilentGhost) — a Jr. Penetration Tester and cybersecurity student currently pursuing BS Cybersecurity from Riphah International University (4th Semester).
Alongside my academic journey, I actively work on real-world security testing, CTF challenges, and web application assessments. I’ve earned certifications including eJPT, PT1, and CWSE, and I’m currently working as a Junior Penetration Tester, improving my offensive security skills daily.
I started HackWithHusnain to bridge the gap between theory and practice. This blog is built for students, beginners, and aspiring ethical hackers who want to understand how vulnerabilities actually work — not just run tools blindly.
Here you’ll find clear explanations, step-by-step blog posts, and real CTF writeups based on real-world testing experience, and original research.
If your goal is to build a solid cybersecurity foundation and think like an attacker — welcome to the journey.
Stealthworm CTF Team
Beyond the blog — I lead Stealthworm, an elite CTF team from Riphah International University. We compete, host events, and build challenges across web exploitation, reverse engineering, OSINT, crypto, and forensics.
Visit Stealthworm.com →Recent Blogs
How I’d Learn Ethical Hacking in 2026 If I Started Over
Let me be straight with you. Most “ethical hacking roadmaps” online are either too vague, outdated, or written by someone who hasn’t actually done the…
Why Most Cybersecurity Certifications Are a Waste of Time (And Which Ones Aren’t)
Let me be real with you. I have seen a lot of people in this field: beginners, students, even some experienced folks, chasing certifications like…
Will AI Replace Pentesters? A Pentester’s Honest Take
Hi guys! and future hackers! Will AI replace pentesters? As a Jr. Penetration Tester, I want to give you my honest take so you can…
HTB vs TryHackMe vs PortSwigger — Which Platform Actually Builds Skills?
Everyone asks this question when they’re starting out. And most answers you’ll find online are vague: “all three are great, use them together!” That’s not…
How CTFs Improve Real-World Hacking Skills
A few weeks ago, I wrote a post called CTFs vs Real-World Pentesting: What Beginners Must Know. In it, I said CTFs and real pentesting…
CTFs vs Real-World Pentesting: What Beginners Must Know
When I started my cybersecurity journey, almost everyone gave me the same advice: “Do CTFs.” And to be fair, that advice helped me a lot…
Recent CTF Writeups
Reactor HTB – Machine Walkthrough
Hi everyone, in this Reactor HTB Machine, I will give u a detailed walkthrough to get the user and root flag in this machine, so…
Content Discovery – TryHackMe Walkthrough
Content discovery is about finding things on a web server that aren’t meant to be publicly visible – hidden directories, sensitive files, old endpoints, subdomains,…
KoBold HTB – Machine Walkthrough
Hi everyone, in this Kobold HTB Machine, I will give u a detailed walkthrough to get the user and root flag in this machine, so…
Facts HTB – Machine Walkthrough
Hi everyone, in this Facts HTB Machine, I will give u a detailed walkthrough to get the user and root flag in this machine, so…
Secure Notes – HTB Writeup | Web Challenge
Hi everyone! In this write-up, we’ll solve the HackTheBox web challenge Secure Notes. It’s a classic prototype pollution challenge combined with a tricky localhost bypass…
Magical Palindrome – HTB Writeup | Web Challenge
Hi! In this write-up, we will solve the HackTheBox Web Challenge Magical Palindrome. So, sit back and read! 🔒 WRITE-UP STATUS Challenge Active · Write-up…
Stay Updated with Cybersecurity Insights
Subscribe to receive hands-on penetration testing writeups, CTF walkthroughs, security research, and practical learning resources.
No spam. No marketing noise. Only real-world cybersecurity content.