Read what Binit writes @ WHOISpublish!
Tag

Security

#security

More content

Read more stories on Hashnode

Articles with this tag

postMessage XSS Write-up | null Ahmedabad Meet, April 2021

Apr 18, 20212 min read107 views

Exploiting the postMessage() method to achieve XSS in a challenge! · At the April 2021 Monthly Meet of null Ahmedabad, I had delivered a session on...

postMessage XSS Write-up | null Ahmedabad Meet, April 2021

Dangling DNS Records on surf-test.xwf.internet.org (Amazon EC2)!

Mar 10, 20216 min read405 views

The "surf-test.xwf.internet.org" subdomain was pointing to a AWS EC2 hostname that the Internet.org team had removed, making it susceptible to...

Dangling DNS Records on surf-test.xwf.internet.org (Amazon EC2)!

Sub-domain Takeover on api.techprep.fb.com (AWS Elastic Beanstalk)!

Feb 16, 20214 min read743 views

It was possible to claim the api.techprep.fb.com subdomain by registering the techprep-backend service on AWS Elastic Beanstalk. Some of the text...

Sub-domain Takeover on api.techprep.fb.com (AWS Elastic Beanstalk)!

NepHack Online CTF June 2020 Write-up

Jun 13, 202026 min read69 views

Find out how I was able to solve the NepHack Healthcare CTF 2020 and become the fourth solver during this special edition of NepHack Online CTF! · How's...

NepHack Online CTF June 2020 Write-up

Adding anyone including non-friend and blocked people as co-host in personal event!

Jan 28, 20206 min read134 views

This IDOR vulnerability in the Facebook Events platform allowed an attacker profile to add anyone as co-host in his/her personal event including...

Adding anyone including non-friend and blocked people as co-host in personal event!

Creating unauthorized comments on Facebook Live Stream!

Nov 15, 20183 min read157 views

This vulnerability could have let a malicious Facebook user to add a comment on any live stream even if it has a friends only privacy. The comment...

Creating unauthorized comments on Facebook Live Stream!