Hello 👋🏻

I am a cyber security professional 🔐👨‍💻 and have held security engineering positions at tech companies such as Atlassian 🇮🇳, Facebook 🇬🇧 and Grab 🇸🇬. I am also the author of Mastering Modern Web Penetration Testing, a book on offensive web hacking. 📚🌐

Shopify: Remote Code Execution

Shopify: Remote Code Execution

HackerOne Vulnerability: Leaking Common Response Titles

HackerOne Vulnerability: Leaking Common Response Titles

Facebook MailChimp Application OAuth 2.0 Misconfiguration

Facebook MailChimp Application OAuth 2.0 Misconfiguration

Facebook FriendFeed Stored XSS

Facebook FriendFeed Stored XSS

Flipkart.com - Elevation of Privilege

Flipkart.com - Elevation of Privilege

SSRF/XSPA in MailChimp

SSRF/XSPA in MailChimp