Archives: Timeline Stories

PikaTwoo is an exceptionally challenging machine on Hack The Box, described as an “absolute monster of an insane box” by Sheeraz. The journey through PikaTwoo involves a series of complex steps, starting with exploiting a vulnerability in OpenStack’s KeyStone to leak a username. The attacker then discovers an Android application in OpenStack Swift object storage. […]

I’m thrilled to announce a significant milestone in my cybersecurity journey: the successful completion of 100 penetration tests spanning network infrastructure, web applications, APIs, Chrome extensions, and mobile applications. This achievement is a testament to the dedication and hard work I’ve put into enhancing digital security across a broad spectrum of technologies. Completing these 100 […]

🍥 I Never Give Up, Never Go Back on My Word – That’s My Cybersecurity Way! 🍥 I’m incredibly honored and humbled to share that I’ve been awarded the “Cybersecurity Samurai of the Year” by BSides Bangalore. This recognition is a milestone in my cybersecurity journey and has filled me with a deep sense of gratitude. […]

I’m thrilled to announce the launch of our brand-new podcast, hosted in partnership with Cobalt! Our journey kicks off with an electrifying first episode that you won’t want to miss. Dive into the riveting world of Red Teaming vs. Penetration Testing as we unravel the intricate details with Saad, a seasoned expert known for spearheading […]

At the c0c0n XV conference, an annual cybersecurity and hacking event renowned for gathering experts and enthusiasts from across the globe, I had the privilege of presenting my research on the integration and effectiveness of automated code review systems at scale. My study focused on the utilization of Semgrep, a cutting-edge static code analysis tool, […]

The amount of detail and effort he has put into that Bug bounty hunter path is phenomenal. Any beginner starting his hacking journey could pass the exam if he went through the Bug bounty hunter path. It covers all the basic, intermediate and advanced concepts while hacking web applications. The exam isn’t easy, but if […]

Finding #bugs in #Wordpress plugins & every codebase effectively! 💡Shreya & Sheeraz will present their research on finding WordPress plugin #vulnerabilities like SQLi, XSS & LFI in bulk by using an open-source tool semgrep to write custom rules that ran over 80k WordPress plugins + learn in-depth about secure code practices Find out more➡️ https://www.youtube.com/watch?v=RvKLn2ofMAo

I’ll be presenting a drone hacking workshop at seasides along with Mohd Arif and Adlin Seedon D.. Join us at Seasides conference Introduction to Drone Hacking Hardware Introduction Software Introduction Operational Courtesies / Polite Piloting Safety & Rules and Laws Case Study: Tello Learning LAB 01: Setting Up Tello and Software Core UAV Technology Core Hardware and Electronics […]

Hey Everyone I will be speaking about Kubernetes 101 in Hack The Box‘s Cyber Apocalypse CTF talks. This workshop will be an overview of Kubernetes and some basic building blocks/concepts from a total beginner’s perspective. There are no prerequisites. Register yourself if you haven’t for the CTF Let’s hack the universe!. Many of my awesome teammates […]

I just finished solving HailStorm AWS cloud lab from Hack The Box. This lab is so Elegantly put together by Suresh Narvaneni. It starts off with an unprivileged external attacker trying to get a hold of a simulated enterprise environment. Which is heavily using AWS services for its infrastructure. We get a foothold from an open s3 […]