Inderjeet Singh

Feb

13

How I Got Multiple Privilege Escalations - The Easy Trick?

2 min read

Oct

13

Soft Deletion of Resources - [Privacy Violation]

3 min read

Aug

25

API Excessive Data Exposure: Why Devs? Why?

1 min read

Aug

10

5500$ Bug Story - Ezzy 2FA Bypass

1 min read

Jun

30

Default OTP: Account Takeover

1 min read

Jun

20

Bypassing Okta SSO=> HTTPS/HTTP

1 min read

Jun

14

Pwning Admin Panel To Change Movie Ticket Prices at Disney

1 min read

May

28

Slides: GraphQL Hacking

3 min read

May

23

[1->2->3] or [2->3]: Bypassing Authentication Barriers

3 min read

Apr

17

Why Shift to Manual Hacking?

4 min read

Apr

12

Writeup: Delete Replies on LinkedIn Learning

2 min read

Apr

04

Guide to Parameter Enumeration

5 min read

Mar

29

ffuf - Fuzz The Web

5 min read

Mar

26

Puredns - Bruteforce Domains

2 min read

Mar

12

How do I approach exploiting access control bugs?

4 min read

Mar

06

Exposing Users Table From a Leaky GraphQL Query

3 min read

Feb

23

Hacking GraphQL API Using Suggestions

4 min read

Feb

14

Guide to Permutations Subdomain Enumeration

4 min read

Feb

04

How do I enumerate more root domain names than others?

4 min read

Jan

08

How I fuzz and hack APIs?

5 min read