manikesh@home:~$

Archive

About

RSS

Whoami

## whoami I am Manikesh, I love participating in CTFs,Pentest Web-applications,APIs and containens. Currently I am learning Golang and tweaking Web-applications. Other than Security and development. I love Playing PC Games,watch tv shows,anime,movies.

I will mainly be using this space to Publish Security research and writeup's

  • A Bucket Takeover Vulnerability with High-Impact Consequences

    Description I will keep it simple because the Vulnerability is pretty straight forward, It was the exploitation and impact which was interesting. The impact of the issue was critical because it was impacting the admins of the organization. This was on one of the sony assets, I don’t have full...

  • The Poisonous Cache: Unmasking a Stealthy Threat

    Description In this comprehensive article, we will explore the fascinating topic of Web cache poisoning, delving into the nature of Web caches and their potential vulnerabilities for exploitation. With real-world examples as our guide, we will uncover the intricacies of this subject and shed light on various techniques to exploit...

  • SSRF-to-EC2takeover, Zendesk account takeover and RCE

    Description So in this Blog post i will walk you through some of high severity issues i found in one of the Public Program. This was a company which was providing lots of SAAS applications. During this period I found several issues like IDOR on unauth API,HTMLI and many medium...

Contact

Instagram Twitter Github Email