Open in app

Sign In

Write

Sign In

Rohan Aggarwal
Rohan Aggarwal

333 Followers

Home

About

Feb 7, 2022

How We “Forced” Our Client To Fix A Low Severity Security Bug And Still Got Appreciated!

We at DefCore Security intend to provide great visibility to clients while working on the pentest engagement. We give our clients the freedom to oversee every stage of testing activity. …

Cyber Security

3 min read

How We “Forced” Our Client To Fix A Low Severity Security Bug And Still Got Appreciated!
How We “Forced” Our Client To Fix A Low Severity Security Bug And Still Got Appreciated!
Cyber Security

3 min read


Jul 28, 2019

Chaining Cache Poisoning To Stored XSS

One of the benefits of being a developer is that you can guess how stuff is working at the server end. …

Bug Bounty

3 min read

Chaining Cache Poisoning To Stored XSS
Chaining Cache Poisoning To Stored XSS
Bug Bounty

3 min read


Jan 27, 2019

Chaining Tricky OAuth Exploitation To Stored XSS

Hey everyone, hope you all are having a great 2019 so far. I found this cool bug and wanted to share, so here it goes. So after going through a private program on hackerone, i found a Self-XSS[AngularJS Template Injection] and a misconfigured OAuth implementation with low impacts. …

Oauth

4 min read

Chaining Tricky OAuth Exploitation To Stored XSS
Chaining Tricky OAuth Exploitation To Stored XSS
Oauth

4 min read


Jan 20, 2019

A Simple CORS Misconfig Leaked Private Post Of Twitter, Facebook & Instagram

Hey Everyone, this is my first story on Medium(one of my friend told me how easy and productive Medium is). If you want to read my previous ones, have a look here at my personal blog. So you might have reached here thinking it’s a big & complex hack but…

Bug Bounty

3 min read

A Simple CORS Misconfig Leaked Private Post Of Twitter, Facebook & Instagram
A Simple CORS Misconfig Leaked Private Post Of Twitter, Facebook & Instagram
Bug Bounty

3 min read

Rohan Aggarwal

Rohan Aggarwal

333 Followers

AppSec | BugBounty | Speaker | Game Hacking | Founder at Defcore Security

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech