Search for a command to run...
Series
In the series I will post about my finding on HackerOne
Introduction Hi everyone, This is my very first write-up in my bug bounty journey, which began in January 2023. Let me introduce myself: I’m Ali Hussainzada, a 21-year-old senior Computer Science student and part-time bug hunter, known online by the ...
Intro, Hi, its me again. In this write-up I will talk about my four bugs (one critical and three of medium severity) I discovered on a single web application two month ago. All vulnerabilities are API related, So I hope you like it. I will try my bes...
Hi, amazing hackers! I hope you're doing well.In this article, I’ll share my learning process and experiences in finding multiple vulnerabilities in GraphQL APIs application. In February, I started learning GraphQL API security using the book Black H...
Hello world! Wait... I probably shouldn’t say that — this isn’t my first blog post. Never mind.How are you doing, mates? How’s life going? Let’s get started. In this article, I want to talk about the CSRF vulnerability, and based on my own findings, ...
Intro, Yo, I hope you’re all doing well!I decided to write a new article once again. The journey of finding these vulnerabilities started when I came across a post about MizbanApp on LinkedIn — an application where you can discover restaurants, cafés...
Hello Friends It’s been two months since I took a break from bug bounty hunting. During that time, I graduated from university 🎓, recharged, and now I’m officially back in the game. And guess what? Within just a few days of returning, I landed a cri...
