Pentesting blogs

Breakdown of program [Read More]

Introduction Well this is my another artcle in which i share my experience how i abuse and expoloit authenticity tokens and chain with csrf to get full account takover if you don’t know what authenticity tokens are , Here is my another article related to same issue chained to idor... [Read More]

Well i got lots of questions from peoples that is it neccessary to learn programing to become a bug hunter,ethical hacker,pentester etc. in short i will use term “security resarcher” so, i decided to write that post to answer that questuions ..and though its my personal opinion everyone have their... [Read More]

Basic Overview Of Bug in this article i will show how a csrf attack and cart rate limit bypass leads to ddos on victim account which leads to temprory ban of user account i was pentesting on private website it was a e-commerce website where you can buy and purchase... [Read More]

Introduction I don’t waste time by talking about myself …i gonna share my experience of a bug “web cache poisioning” in bug bounty as usually i was pentesting on private sites i saw there my paraminer shows an unkeyed url with secret url Before exploiting part i wanna share my... [Read More]