Most Recent Posts
A letter to myself - 31 December 2024
2023
February 2023
Top-Tier Bug bounty Hunter Mindset (BSides Ahmedadabad 2022 Keynote) - 8 February 2023
2022
December 2022
Hunting for Amazon Cognito Security misconfigurations (NahamCon EU 2022) - 27 December 2022
May 2022
Recon flow, bug bounty, mental health and more! (Interview with Nahamsec & Jhaddix) - 28 May 2022
April 2022
Exploitation of an SSRF vulnerability against EC2 IMDSv2 - 28 April 2022
Refactoring and deploying ASNLookup.com & REST API on AWS - 18 April 2022
Exploiting a double-edged SSRF for server and client-side impact - 3 April 2022
2019
March 2019
Automated monitoring of subdomains for fun and profit — Release of Sublert - 10 March 2019
2015
March 2015
Python module UrlParse security inconsistency - 3 March 2015
2014
December 2014
How I discovered a $1000 open redirect in Facebook - 30 December 2014