A collection of web application pentesting notes and walkthroughs — covering reconnaissance, application mapping, authentication analysis, input testing, and exploitation methodology. Ideal for anyone working through TryHackMe, HackTheBox, or real-world bug bounty targets.