Aug
28
jsmon-cli - Enhanced Security Tooling for JavaScript (jsmon.sh)
4 min read
Inderjeet Singh
Feb
13
How I Got Multiple Privilege Escalations - The Easy Trick?
2 min read
Oct
13
Soft Deletion of Resources - [Privacy Violation]
3 min read
Aug
25
API Excessive Data Exposure: Why Devs? Why?
1 min read
Aug
10
5500$ Bug Story - Ezzy 2FA Bypass
1 min read
Jun
30
Default OTP: Account Takeover
1 min read
Jun
20
Bypassing Okta SSO=> HTTPS/HTTP
1 min read
Jun
14
Pwning Admin Panel To Change Movie Ticket Prices at Disney
1 min read
May
28
Slides: GraphQL Hacking
3 min read
May
23
[1->2->3] or [2->3]: Bypassing Authentication Barriers
3 min read
Apr
17
Why Shift to Manual Hacking?
4 min read
Apr
12
Writeup: Delete Replies on LinkedIn Learning
2 min read
Apr
04
Guide to Parameter Enumeration
5 min read
Mar
29
ffuf - Fuzz The Web
5 min read
Mar
26
Puredns - Bruteforce Domains
2 min read
Mar
12
How do I approach exploiting access control bugs?
4 min read
Mar
06
Exposing Users Table From a Leaky GraphQL Query
3 min read
Feb
23
Hacking GraphQL API Using Suggestions
4 min read
Feb
14
Guide to Permutations Subdomain Enumeration
4 min read
Feb
04
How do I enumerate more root domain names than others?
4 min read