List: Reading list | Curated by SANJAY KUMAR

Sep 10, 2024

51 stories

Reading list
Oluwatobiloba Adu
Deploy a Load Balancer in Front of React ServerProject Description
Nov 22, 2022
3
Nov 22, 2022
3
Marcelo Andrade
Writing your own programming language and compiler with PythonIntroduction
Jun 28, 2018
4.4K
33
Jun 28, 2018
4.4K
33
SANJAY KUMAR
Enhancing Web Security: Developing AdvSQLi for Robust SQL Injection DetectionIntroduction
Hello,I have developed an innovative system aimed at enhancing web application security. Our project, AdvSQLi, focuses on…
Jun 1, 2024
1
Jun 1, 2024
1
Vengeance
Evil Twin Attack: Steal Wi-Fi PasswordCracking wifi password through a dictionary attack can only be successful if the password is listed in the wordlist that you are using…
Jul 5, 2023
450
2
Jul 5, 2023
450
2
In
System Weakness
by
Diego Tellaroli
Using ChatGPT to write exploitsHello everyone, my name is Diego Tellaroli and today we are going to use ChatGPT to write exploits.
Feb 10, 2023
749
17
Feb 10, 2023
749
17
In
System Weakness
by
Alopix | Αλώπηξ
How to bypass a Windows passwordNot an April fools joke
Apr 1, 2023
163
Apr 1, 2023
163
Qchad
My First Bug Bounty Reward : $100 in 5 minHello everyone,
Jan 8, 2023
1K
11
Jan 8, 2023
1K
11
Gokulsspace
The 30000$ Bounty Affair.It was one of the hottest day in the hottest district of Kerala, i.e, Palakkad. I was bug hunting all day and the sweat was soaking me all…
May 28, 2023
1.93K
29
May 28, 2023
1.93K
29
SANJAY KUMAR
NO RATE OF LIMIT ON UNESCO IN RESET PASSWOARD AND EMAIL VERIFICATIONThis is SANJAY KUMAR I was found UNESCO subdomain website at No rate of limit vulnerability
Dec 3, 2022
Dec 3, 2022
Jefferson Gonzales
Account Takeover worth of $2500whoami?
Nov 16, 2022
251
5
Nov 16, 2022
251
5
Jerry Shah (Jerry)
HTTP Parameter Pollution - It’s Contaminated AgainSummary :
Jul 26, 2022
443
3
Jul 26, 2022
443
3
In
Android Developers
by
Sabs
The deep links crash course, Part 1: Introduction to deep links“What can you do with deep links?” I welcome you to the first installment of the deep links crash course series…
Sep 2, 2022
416
3
Sep 2, 2022
416
3
In
InfoSec Write-ups
by
Omar Hashem
How I Found Multiple SQL Injections in 5 Minutes in Bug BountyHi everybody, SQL Injection is one of the most critical vulnerabilities that can be found in web applications I will show you today how I…
Sep 22, 2022
925
11
Sep 22, 2022
925
11
In
InfoSec Write-ups
by
Omar Hashem
Orange Arbitrary Command ExecutionHi everybody Omar Hashem is here, I will share with you how I was able to achieve more than 10 RCE in different companies using the same…
Sep 29, 2022
487
4
Sep 29, 2022
487
4
In
InfoSec Write-ups
by
Omar Hashem
Full Company Building TakeoverHello everybody, Most of the time you read about account takeover or Infrastructure takeover but did you heard before about Company…
Oct 6, 2022
691
16
Oct 6, 2022
691
16
Ahmed Qaramany
Error based SQL Injection with WAF bypass manual Exploit 100%Hey folks,
Back again with SQL injection WAF bypass write-up, I’m gonna share what methodology I used to bypass the WAF block.
Oct 6, 2022
820
4
Oct 6, 2022
820
4
In
Numen Cyber Labs
by
Numen Cyber Labs
Analysis and Summary of TCP/IP Protocol Remote Code Execution Vulnerability CVE-2022–34718An Analysis of Remote Code Execution Vulnerability CVE-2022–34718
Oct 26, 2022
151
2
Oct 26, 2022
151
2
mehedishakeel
Improper Access Control — My Third Finding on Hackerone!Improper Access Control means web application or software functions does not restrict or incorrectly restricts access and usage to any…
Nov 2, 2022
496
5
Nov 2, 2022
496
5
In
System Weakness
by
RyuuKhagetsu
Getting P1 Bug Only With My CellphoneHi everyone how are you?, I hope you guys are well. I’m RyuuKhagetsu, this is my article in English, sorry if there are any mistakes. I…
Nov 2, 2022
150
2
Nov 2, 2022
150
2
Vishal Barot
Invitation HijackingHi Guys! Long time no see!
Nov 3, 2022
130
3
Nov 3, 2022
130
3

Reading list

Deploy a Load Balancer in Front of React Server

Project Description

Writing your own programming language and compiler with Python

Introduction

Enhancing Web Security: Developing AdvSQLi for Robust SQL Injection Detection

Introduction Hello,I have developed an innovative system aimed at enhancing web application security. Our project, AdvSQLi, focuses on…

Evil Twin Attack: Steal Wi-Fi Password

Cracking wifi password through a dictionary attack can only be successful if the password is listed in the wordlist that you are using…

Using ChatGPT to write exploits

Hello everyone, my name is Diego Tellaroli and today we are going to use ChatGPT to write exploits.

How to bypass a Windows password

Not an April fools joke

My First Bug Bounty Reward : $100 in 5 min

Hello everyone,

The 30000$ Bounty Affair.

It was one of the hottest day in the hottest district of Kerala, i.e, Palakkad. I was bug hunting all day and the sweat was soaking me all…

NO RATE OF LIMIT ON UNESCO IN RESET PASSWOARD AND EMAIL VERIFICATION

This is SANJAY KUMAR I was found UNESCO subdomain website at No rate of limit vulnerability

Account Takeover worth of $2500

whoami?

HTTP Parameter Pollution - It’s Contaminated Again

Summary :

The deep links crash course, Part 1: Introduction to deep links

“What can you do with deep links?” I welcome you to the first installment of the deep links crash course series…

How I Found Multiple SQL Injections in 5 Minutes in Bug Bounty

Hi everybody, SQL Injection is one of the most critical vulnerabilities that can be found in web applications I will show you today how I…

Orange Arbitrary Command Execution

Hi everybody Omar Hashem is here, I will share with you how I was able to achieve more than 10 RCE in different companies using the same…

Full Company Building Takeover

Hello everybody, Most of the time you read about account takeover or Infrastructure takeover but did you heard before about Company…

Error based SQL Injection with WAF bypass manual Exploit 100%

Hey folks, Back again with SQL injection WAF bypass write-up, I’m gonna share what methodology I used to bypass the WAF block.

Analysis and Summary of TCP/IP Protocol Remote Code Execution Vulnerability CVE-2022–34718

An Analysis of Remote Code Execution Vulnerability CVE-2022–34718

Improper Access Control — My Third Finding on Hackerone!

Improper Access Control means web application or software functions does not restrict or incorrectly restricts access and usage to any…

Getting P1 Bug Only With My Cellphone

Hi everyone how are you?, I hope you guys are well. I’m RyuuKhagetsu, this is my article in English, sorry if there are any mistakes. I…

Invitation Hijacking

Hi Guys! Long time no see!

SANJAY KUMAR

Reading list

UNESCO-SANJAY KUMAR |@rubikproxy

Subdomain takeover