kmintheininqwertyOSWE Certification and Exam Reviewအားလုံးပဲမင်္ဂလာပါ Hack with K မှကြိုဆိုပါတယ်။ ဒီ post မှာ OSWE certification နဲ့ exam review ကိုပြောပြပေးသွားမှာဖြစ်ပါတယ်။ Video…Jan 16, 2022Jan 16, 2022
kmintheininqwertyChanging Pre-Auth stored XSS to RCE for fun and no profit (CVE-NaN)Hi all, it has been months since I didn’t publish anything on Medium. In January 2021, I found preauthentication stored XSS and command…Apr 1, 2021Apr 1, 2021
kmintheininqwertyeCXD ReviewThis is the honest review for eCXD course and exam. eCXD is an eLearnSecurity Certified eXploit Developer certification from…Aug 7, 20201Aug 7, 20201
kmintheininqwertyAccount takeover in cups.mail.ruIn this year April 1, I quit my job due to some reason and so I can spend some times in Hackerone. I stopped finding bugs in 2018 because I…Aug 3, 2020Aug 3, 2020
kmintheininqwertyStory of stealing mail conversation, contacts in mail.ru and myMail iOS applications via XSSIn June 2020, I found a stored XSS bug that could allow an attacker to steal user email conversations, contacts in mail.ru and myMail iOS…Jun 30, 20201Jun 30, 20201
kmintheininqwertyHow I get started into Threat HuntingLast two years ago, as a final year student, I was doing internship at one of the leading bank at Myanmar and meet my team leader who…Jun 4, 20201Jun 4, 20201
kmintheininqwertyThreat Hunter Diary Part 1- Hunting MimikatzThis is my very first post about threat hunting series in medium. Please keep note that every threat hunters have different hunting…May 28, 20201May 28, 20201
kmintheininqwertyLesser Known Web Attack(LKWA) Lab Walk-through0x0A — IntroductionMay 28, 20201May 28, 20201