Client-side Authentication Bypass

A blog about bypassing authentication that is enforced only in client-side JavaScript, with four real-world case studies from bug bounty and Synack Red Team engagements.

Escalating Privileges With SSRF

This post is regarding my findings on Synack Red Team. The findings included a total of 4 SSRFs. One of them being a fully unauthenticated SSRF leading to high privileged account takeover.

Holiday Hunting With Aquatone

This blog is about my findings while on a workcation to Goa with my hacker friends.

120 Days of High Frequency Hunting

A writeup about my journey to find 120 bugs in 120 days