Hey! I'm a 23-year-old security researcher.
Nothing here yet.
Feb 7 路 8 min read 路 In this blog post, I'll walk you through one of the most unusual and creative bugs I've ever found. This isn't your typical IDOR or privilege escalation. This is a story about how an AI agent, designed to protect data, became the very thing that leak...
Join discussion
Jan 23 路 3 min read 路 Leaking a Cognito Identity Pool ID is often dismissed as a low-impact information disclosure. But when the IAM policy attached to the unauthenticated role is misconfigured, that "low-impact" leak becomes a direct path into the cloud infrastructure. W...
Join discussion
Dec 21, 2025 路 4 min read 路 We all have those endpoints we instantly ignore in our HTTP history. You see GET /favicon.ico, you ignore it. You see GET /assets/logo.png, you ignore it. And usually, when you see GET /health, you ignore that too. Why? Because 99.9% of the time, the...
TAmirAli commented
Oct 29, 2025 路 6 min read 路 When I start looking at a target in finance, medical, etc, I always go for the most valuable data. In this case, on a major application we'll call "Redacted Corp," that meant file uploads. Invoices, personal documents, signatures... all the PII. Part...
00xMountain commented
Apr 12, 2024 路 3 min read 路 Exploring Chests or Boxes: Unraveling the Secrets 馃幉 In the digital realm of gaming, chests and boxes are akin to Pandora's Box, each unveiling unique rewards and surprises. For instance, you're generally allowed to open a 'Golden Box', but what if, ...
Join discussion