Blog Posts
- Aug, 2018
- Aug 01, 2018
Part V: Exploration - Intruder Payload Processing
- Aug 01, 2018
Part IV: Diving deeper into Extender API Interfaces
- Jul, 2018
- Jul 31, 2018
Part III: Extension Project Structure and Fundamentals
- Jul 30, 2018
Part II: Setting Up Extension Development Tools
- Jul 30, 2018
Part I: Introduction to Burp Extender
- Jul 30, 2018
Burp Suite Extension Development Series
- Jul, 2015
- Jul 16, 2015
Shopify: Remote Code Execution
- Oct, 2014
- Oct 15, 2014
HackerOne Vulnerability: Leaking Common Response Titles
- Aug, 2014
- Aug 08, 2014
Facebook MailChimp Application OAuth 2.0 Misconfiguration
- Aug 08, 2014
Facebook FriendFeed Stored XSS
- Mar, 2014
- Mar 27, 2014
Flipkart.com - Elevation of Privilege
- Feb, 2014
- Feb 18, 2014
SSRF/XSPA in MailChimp
- Sep, 2013
- Sep 21, 2013
PayPal CSRF aids in account takeover!
- Jun, 2013
- Jun 28, 2013
Triggering an unexploitable DOM-based XSS in Rediff Blogs automagically
- Jun 13, 2013
Pwning Facebook accounts, taking a little help from Quora