PinnedRedOps CyberInterview joke 2: Application Security (Prod.My interview with a Log Analytics company, I was provided a CTF which never matched with a real life pentesting.Aug 30Aug 30
PinnedRedOps CyberOSCP 2023 version — A Small write-up on preparation and my exam experienceBeing in the tech industry for almost 8 years with 5 years into Pentesting, OSCP was always in my certifications list, I’ve started this…Jul 2, 20232Jul 2, 20232
RedOps CyberSSRF Simplified (OWASP 2021-A10)SSRF is Server Side Request Forgery — By exploiting the vulnerabilities within internal server through external interface of a web or APIs…Sep 26Sep 26
RedOps CyberUnderstanding Insecure DeserializationInsecure Deserialization still exists in few legacy apps and code which are written without following any secure coding practices in place.Sep 21Sep 21
RedOps CyberMeta / Facebook MFA bypass security bug was turned down, calling it a feature! What do you think?After a very long time, I was trying to login into my Facebook account,Jul 3Jul 3
RedOps CyberXSS in CMS / Blog sites bypassing HTML encoding and escaping.During one of the pentests in the past, I have come across this CMS website built on Drupal. It came with the feature of embedding…Feb 11Feb 11
RedOps CyberScam courses in India that you should avoid (Part-1)Most of you must have seen some courses advertised on Youtube / Instagram where you have to pay negligible amount and get skills /…Feb 101Feb 101
RedOps CyberSecurity (Red Team) Consultant @ Google— My Google Interview experienceIt was months since I have written my last article on Medium. A sudden medical emergency followed by a surgery put me in the rest for few…Feb 4Feb 4
RedOps CyberHow to exploit SQL Injection to RCE using SQLMAPIt was first time in my cyber security career, I have discovered this critical vulnerability back in 2019, I thought of posting it in…Aug 7, 2023Aug 7, 2023