Rifqi Hilmy Zhafrant[Bounty Weekend] Phone Verification Bypass With Business Logic VulnerabilityThe target application is an online banking platform that provides a range of financial services, including high-interest savings accounts..Jun 282Jun 282
Rifqi Hilmy Zhafrant[Bounty Weekend] View Any User Design With Simple Path Traversal IDORThe target application is a platform that allows users to create personalized designs for products and then purchase these customized…Jun 151Jun 151
Rifqi Hilmy Zhafrant[Bounty Weekend] Possible Code Execution With Integration Script TamperingThe target application is a tool that provides secure access management for infrastructure, enabling users to manage and access servers…Jun 15Jun 15
Rifqi Hilmy Zhafrant[Bounty Weekend] Disable Any Customer Ability To Create Service Account With Business Logic…The target is a web application that use Graphql as API. In recent times, the application has new feature which was a service account. ThisJun 84Jun 84
Rifqi Hilmy Zhafrant[Bounty Weekend] CTF Level XSS in a Real-World ApplicationThe target application is a web app that used express js as front end and it has webpack with sourcemap enabled so we can see the original..Jun 8Jun 8
Rifqi Hilmy ZhafrantReflected XSS To Account Takeover Without Stealing Session CookieA few days ago when doing bug bounty in a private program in Hackerone. I found a reflected XSS in their forgot password functionality in…Mar 201Mar 201
Rifqi Hilmy ZhafrantRaaS- NahamCon EU CTF 2022 Writeup (Poisoned Pipeline Execution)Enjoy this article and here’s my writeup for NahamCon EU CTF 2022 RaaS (DevOps) challenge…Dec 20, 2022Dec 20, 2022
Rifqi Hilmy ZhafrantinSystem WeaknessOpen Redirect via Sendgrid Email MisconfigurationHello developer , bug hunter and cyber security enthusiast. In this opportunity i wanna show you my first Bug Bounty writeup from one of a…Mar 13, 20221Mar 13, 20221
Rifqi Hilmy ZhafrantWriteup Fword CTF 2021 — ELearning(Memory Forensic)Forensic — ELearning[953 Pts](23 Solves)Aug 30, 2021Aug 30, 2021
Rifqi Hilmy ZhafrantWriteup Fword CTF 2021 — Listening (Email Forensic)Forensic — Listening [738 Pts](54 Solves)Aug 29, 2021Aug 29, 2021