Johannes Rosencrantz

@cr4ntz

Uppsala, SwedenJoined January 2026

About

Passionate about all things cybersecurity.

Available for

Nothing here yet.

Johannes Rosencrantz's blogs

Ethical Hacking / Cybersecurity Blogcr4ntz.sh2 posts

Articles Threads Comments

Recently published

JRJohannes Rosencrantzcr4ntz.sh

0

Leaking a Google OAuth 2.0 Access Token Through Misconfigured Error Handling

Apr 21 · 3 min read · I was hacking on a mobile app that lets musicians purchase sheet music for various compositions. After having proxied traffic from my phone to Burp Suite, I didn't find anything that piqued my interes

Join discussion

JRJohannes Rosencrantzcr4ntz.sh

0

Exploiting SSRF in PDF Generation to Leak a Kubernetes Service Account Token

Jan 18 · 7 min read · Note – Disclosure Status:This vulnerability has not been disclosed by the affected company. Any information that could identify the company has been redacted. Intro While hunting for bugs on a company’s VDP (Vulnerability Disclosure Program) on the ...

Join discussion

Johannes Rosencrantz

About

Available for

Johannes Rosencrantz's blogs

Recently published

Leaking a Google OAuth 2.0 Access Token Through Misconfigured Error Handling

Exploiting SSRF in PDF Generation to Leak a Kubernetes Service Account Token

Search Hashnode

Johannes Rosencrantz

About

Available for

Johannes Rosencrantz's blogs

Recently published

Leaking a Google OAuth 2.0 Access Token Through Misconfigured Error Handling

Exploiting SSRF in PDF Generation to Leak a Kubernetes Service Account Token