Honors / Awards
In the name of Allah, the Most Gracious, the Most Merciful. Q1 2020 Bugcrowd MVP Researchers Description: Qualified as one of Q1 2020 Bugcrowd MVP (Researcher...
June 1, 2015
Tagged: Honors
Search
Recent Posts
- From Recon to Bypassing MFA Implementation in OWA by Using EWS Misconfiguration
- From 3,99 to 1,650 USD (Part I) – Simple Vertical Privilege Escalation by Changing HTTP Response
- From Recon to Optimizing RCE Results – Simple Story with One of the Biggest ICT Company in the World
- If Allah willed it, will be back soon!
- 5,000 USD XSS Issue at Avast Desktop AntiVirus for Windows (Yes, Desktop!)
- CVE-2019–18624 – Illegal Rendered at Download Feature in Several Apps (including Opera Mini) that Lead to Extension Manipulation (with RTLO)
- Race Condition that could Result to RCE – (A story with an App that temporary stored an uploaded file within 2 seconds before moving it to Amazon S3)
Categories
- About Me (3)
- Achievements (2)
- Bug Report (26)
- Desktop Apps (4)
- Mobile Apps (5)
- Random Things (8)
- Terms of Use (1)
- Web Apps (17)
- Write-Up (16)
- Write-Up in Bahasa (4)
Latest Tweets
We just bypassed an android MDM with Electromagnetic Fault Injection. Wait... It gets more interesting.... using a gas lighter for only $1.5
Kudos to bandit @marunmagesh for the work! Long live Jugaad!
https://bit.ly/3kYVCPV
Universal XSS in Android WebView (CVE-2020-6506)
#MobileSecurity #AndroidSecurity by @AlesandroOrtizR
https://alesandroortiz.com/articles/uxss-android-webview-cve-2020-6506/