Cache Deception Without Path Confusion

A weird case of Web Cache Deception vulnerability that didn’t utilize path confusion for exploit.
Read more →

Defeating Length Filters to Dump the Database - SQLi

A blog about how I managed to bypass length filter on an SQLi to dump the database
Read more →

Escalating Privileges With SSRF

This post is regarding my findings on Synack Red Team. The findings included a total of 4 SSRFs. One of them being a fully unauthenticated SSRF leading to high privileged account takeover.
Read more →

Full Disclosure - DOM-based XSS And Failures In Bug Bounty Hunting

A writeup about my failures while doing bug bounty
Read more →

Holiday Hunting With Aquatone

This blog is about my findings while on a workcation to Goa with my hacker friends.
Read more →