PinnedJayateertha GuruprasadinInfoSec Write-upsTorrent Trails: Unmasking Your Torrent Downloads with IP AddressPublic IP address is mostly assigned static to each unique person by an ISP in most of the cases.2 min read·Oct 26, 2023--5--5
PinnedJayateertha GuruprasadinInfoSec Write-upsXS-Leak: Deanonymize Microsoft Skype Users by any 3rd-party websiteXS-Leaks — These are class of vulnerabilities derived from side channel attack. Although browsers have security features like SOP, which…3 min read·Apr 21, 2023----
PinnedJayateertha GuruprasadinInfoSec Write-upsHow Browser’s Save As Feature might lead to Code Execution (CVE-2022–45415)Few days ago, while I was exploring browser based bugs, I read a article over internet explaining about a path traversal vulnerability in…3 min read·Jan 14, 2023--2--2
PinnedJayateertha GuruprasadinInfoSec Write-upsBlind SSRF in Skype (Microsoft)Server Side Request Forgery is a vulnerability that allows attacker to make server request to attacker controlled network location/path.2 min read·Oct 28, 2022--1--1
PinnedJayateertha GuruprasadinInfoSec Write-upsGrafana Admin Panel bypass in Google Acquisition(VirusTotal)I started with usual subdomain recon of a google acquisition(VirusTotal).This time I used a online subdomain finder service…2 min read·Feb 20, 2021--2--2
Jayateertha GuruprasadinInfoSec Write-upsJSON CSRF in Microsoft Bing Maps CollectionsBing Maps allows users to create a collection and add places to those collections as shown below.5 min read·Feb 9, 2024----
Jayateertha GuruprasadinInfoSec Write-upsIntro to Fuzzing IoT Protocols using BooFuzzIn this article let’s learn about how to fuzz IoT protocols such as modbus using boofuzz, a open source fuzzing framework which can fuzz…4 min read·Jan 17, 2024----
Jayateertha GuruprasadBypass Duplicate Tweet Protection using negative tweet idTwitter doesn’t allow making tweets of same content in relatively near time frame.2 min read·Nov 11, 2022----
Jayateertha GuruprasadinInfoSec Write-upsAbusing Broken Link In Fitbit (Google Acquisition)To Collect BugBounty Reports On Behalf Of Google !I usually track acquisitions of websites for which I am hunting bugs regularly…2 min read·Sep 16, 2022----
Jayateertha Guruprasad2FA Bypass in PickMyCareer.inI found a 2fa bypass recently in a responsible disclosure program — pickmycareer.in .2 min read·May 6, 2022----