Discovering a Stored XSS Vulnerability on a Bug Bounty ProgramHello AppSec folks, I hope everyone is doing great! This is Anmol, also known as Nishachar or Asmodeus. Let’s dive straight into my recent…Sep 8, 2024Sep 8, 2024
Mastering Server-side Request Forgery (SSRF): Exploitation Techniques and Practical LabsHello Amazing Hacker’s !! I am excited to announce that I am sharing my learnings, learning together, hunting, growing our skills and…Apr 11, 20231Apr 11, 20231
IDOR allows updating user profiles, leading to full account takeover. | Part 02Hi there, amazing hackers and security enthusiasts! Today, I want to share something really important with you. I’m sure you’ll find it…Dec 13, 20222Dec 13, 20222
IDOR Disclose User Pending Trip Information | Part 01Hi Amazing Hackers & Security Enthusiasts, today I am going to write about something very important. Identifying IDOR bugs that lead to…Dec 1, 20221Dec 1, 20221
