Pratik Dabhi – Medium

Pratik Dabhi

Pinned

Published in

InfoSec Write-ups

Unlocking Cash: Easy P1 Bug in Grafana Dashboard with Default Credentials = €€€€

Hello there,

Nov 10, 2023

Unlocking Cash: Easy P1 Bug in Grafana Dashboard with Default Credentials = €€€€

Nov 10, 2023

Pinned

Published in

InfoSec Write-ups

Hunting for Hidden Treasures: Unveiling the 403 Bypass Bug Bounty Adventure 🕵️‍♂️💰

Oct 15, 2023

Hunting for Hidden Treasures: Unveiling the 403 Bypass Bug Bounty Adventure 🕵️‍♂️💰

Oct 15, 2023

Pinned

Published in

InfoSec Write-ups

Web Application Vulnerabilities: CRLF Injection and Beyond

Oct 11, 2023

Web Application Vulnerabilities: CRLF Injection and Beyond

Oct 11, 2023

Published in

InfoSec Write-ups

From Open Redirect to Internal Access: My SSRF Exploit Story

Hello there,

Jul 6

From Open Redirect to Internal Access: My SSRF Exploit Story

Jul 6

Published in

InfoSec Write-ups

How I Hacked Accounts Using Host Header Injection in Password Reset Link — $$$$

Hello there,

Jun 18

How I Hacked Accounts Using Host Header Injection in Password Reset Link — $$$$

Jun 18

Published in

InfoSec Write-ups

Unauthenticated Kibana Dashboard Access — A Serious Security Risk You Can’t Ignore

Hello there,

May 31

Unauthenticated Kibana Dashboard Access — A Serious Security Risk You Can’t Ignore

May 31

Published in

InfoSec Write-ups

How I Discovered a Web Cache Deception Attack Exposing PII — A Real-World Case Study

Hello there,

May 31

How I Discovered a Web Cache Deception Attack Exposing PII — A Real-World Case Study

May 31

Published in

InfoSec Write-ups

Bug Bounty and Penetration Testing Explained: What’s the Difference

Hello there,

May 29

Bug Bounty and Penetration Testing Explained: What’s the Difference

May 29

Exploiting the Unprotected: How I Gained Unauthorized Access to Redis

Hello there,

Oct 1, 2024

Exploiting the Unprotected: How I Gained Unauthorized Access to Redis

Oct 1, 2024

Published in

InfoSec Write-ups

Open-redirection leads to a bounty

Hey guys Pratik this side. In this writeup, I’m going to share some of my open-redirection hunts and what resources I use to find…

Jul 10, 2020

Open-redirection leads to a bounty

Jul 10, 2020

Pratik Dabhi

Pratik Dabhi

Solution Delivery Analyst at @Deloitte India (Offices of the US) | Pentester | Bugcrowd Top 200 Hackers Globally | SRT | Youtuber | Synack Envoy | CEH | eJPT

Following

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech