Andmp | A blog about infosec, bug hunting and more!

Home
about
contact

Andmp | A blog about infosec, bug hunting and more!

A blog about infosec, bug hunting, education and a plethora of other things...

About the Team
InfoSec
Penetration Testing Services

Breaking

Featured

ad

Fashion

Food

Technology

News

Sports

Post Top Ad

Recent Posts

Wednesday, 10 April 2019

[Unpatched Vulnerability] CVE-2019-11015: Lock Screen Auth Bypass leading to Sensitive Information Disclosure and an Improper Access Control issue in Xiaomi MIUI OS (latest stable releases affected)

A Khan April 10, 2019 2

By A Khan at April 10, 2019

Reactions:

2 comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: advisory, CVE, Mi, MIUI, mobile security, security, sensitive information disclosure, unpatched vulnerability, Xiaomi

Monday, 8 April 2019

0day Alert: URL Spoofing Bypassed for latest Mint Browser 1.6.4 by Renwa

xiaomi security issue

A Khan April 08, 2019 0

By A Khan at April 08, 2019

Reactions:

No comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: mobile security, Xiaomi, xiaomi browser 0day, xiaomi browser vulnerability, xiaomi security issue

Sunday, 7 April 2019

0day Alert: Bypassing CVE-2019-10875 or, Xiaomi's Mint Browser's URL Spoofing patch: Discovered by Renwa

xiaomi security issue

A Khan April 07, 2019 0

By A Khan at April 07, 2019

Reactions:

No comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: 0day, mobile security, Xiaomi, xiaomi browser 0day, xiaomi browser vulnerability, xiaomi security issue

Friday, 5 April 2019

Xiaomi URL spoofing w/ SSL vulnerability or, CVE-2019-10875 - Was it intentionally kept in the global versions by Xiaomi?

xiaomi security issue

A Khan April 05, 2019 2

By A Khan at April 05, 2019

Reactions:

2 comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: Mi, PoC, vulnerability, Xiaomi, xiaomi browser vulnerability, xiaomi security issue

Sunday, 31 March 2019

The case of an unusual $10k worth content-based Blind SQLi in a Private Program

A Khan March 31, 2019 3

By A Khan at March 31, 2019

Reactions:

3 comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: Blind SQLi, bug bounty writeup, content based, SQL injection

Saturday, 1 December 2018

How I managed to get an @Google.com email address, bypassing their previous patch!

Gopal Singh December 01, 2018 0

By Gopal Singh at December 01, 2018

Reactions:

No comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: bug bounty, Business logic bugs, google, google issue tracker bug, hacking, hacking google, InfoSec, security, security testing, security writeup, ticket trick

Wednesday, 28 November 2018

Escalating SSRF in a Vulnerable Jira Instance to RCE via Docker Engine API

A Khan November 28, 2018 0

By A Khan at November 28, 2018

Reactions:

No comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: bug bounty, hacking, penetration testing, Reddit, security testing, SSRF

Saturday, 8 September 2018

OSCP Review - Cracking OSCP at 17

security certifications

Unknown September 08, 2018 0

By Unknown at September 08, 2018

Reactions:

No comments: Links to this post

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: certification, First guy to crack OSCP at 17, hacker, hacking, InfoSec, Offensive Security Certified Professional, OffSec, OSCP, OSCP review, penetration testing, pentest, security, security certifications

Older Posts Home

Post Bottom Ad

About Author

A Security Researcher and Bug Hunter based in India.

Author

Food

Videos

Socialize

facebook count=3.5k;
Followers
twitter count=1.7k;
Followers
gplus count=735;
Followers
youtube count=2.8k;
Followers
pinterest count=524;
Followers
instagram count=849;
Followers

Twitter

Tweets by payloadartist

Follow by Email

Facebook

Blog Archive

▼ 2019 (5)
- ▼ April (4)
- ► March (1)

► 2018 (8)
- ► December (1)
- ► November (1)
- ► September (1)
- ► August (2)
- ► March (1)
- ► February (1)
- ► January (1)

► 2017 (6)
- ► September (1)
- ► August (3)
- ► May (1)
- ► April (1)

Menu - Pages

Home
Concepts of Physics by H C Verma

Recent

Popular

H.C. VERMA CONCEPTS OF PHYSICS EBOOK DOWNLOAD

Go ahead and download your copy of the latest version of the book Concepts of Physics H C Verma Part I now ! hc verma hc v...
How I managed to get an @Google.com email address, bypassing their previous patch!

The Google Bug Tracker helps them(Google) in tracking through different bugs and security issues, but Gopal, a highly skilled security re...
Escalating SSRF in a Vulnerable Jira Instance to RCE via Docker Engine API

Originally posted by me on Reddit. This is just a repost of what I wrote there on /r/netsec, and formatting is a bit awkward. Due to some...
Xiaomi URL spoofing w/ SSL vulnerability or, CVE-2019-10875 - Was it intentionally kept in the global versions by Xiaomi?

Introduction Are Chinese device makers on purpose making their software and OS insecure for international markets? Chinese manufactur...
OSCP Review - Cracking OSCP at 17

Meet Kunal, a friend and fellow security researcher and hacker, the youngest boy to crack OSCP in India at the age of 17, all at the ag...

Comments

Archive

Sponsor

Technology

Tags

0day advisory beef projec beef xss framework Blind SQLi bug bounty bug bounty writeup Business logic bugs certification chapterwise H C Verma Solutions chapterwise hc Verma part 1 solutions Concepts of Physics concepts of physics by h c verma concepts of physics by h c verma part I content based csrf CVE First guy to crack OSCP at 17 fundamentals of physics fundamentals of physics by halliday resnick and walker pdf resnick halliday physics class 11 pdf google google issue tracker bug H C Verma Solutions h.c verma free download full book hacker hacking hacking google hc verma solutions pdf hostile subdomain takeovers InfoSec Mi MIUI mobile security Offensive Security Certified Professional OffSec OSCP OSCP review penetration testing pentest PoC Reddit resnick halliday physics volume 1 pdf security security certifications SECURITY RESEARCH security testing security writeup sensitive information disclosure SQL injection SSRF Subdomain takeovers ticket trick unpatched vulnerability vulnerability vulnerability analysis vulnerability assessment vulnerability testing framework Xiaomi xiaomi browser 0day xiaomi browser vulnerability xiaomi security issue

Pages

Home

Tags

0day (1) advisory (1) beef projec (1) beef xss framework (1) Blind SQLi (1) bug bounty (2) bug bounty writeup (1) Business logic bugs (1) certification (1) chapterwise H C Verma Solutions (1) chapterwise hc Verma part 1 solutions (1) Concepts of Physics (1) concepts of physics by h c verma (1) concepts of physics by h c verma part I (1) content based (1) csrf (1) CVE (1) First guy to crack OSCP at 17 (1) fundamentals of physics (1) fundamentals of physics by halliday resnick and walker pdf resnick halliday physics class 11 pdf (1) google (1) google issue tracker bug (1) H C Verma Solutions (1) h.c verma free download full book (1) hacker (1) hacking (3) hacking google (1) hc verma solutions pdf (1) hostile subdomain takeovers (1) InfoSec (2) Mi (2) MIUI (1) mobile security (3) Offensive Security Certified Professional (1) OffSec (1) OSCP (1) OSCP review (1) penetration testing (2) pentest (1) PoC (1) Reddit (1) resnick halliday physics volume 1 pdf (1) security (4) security certifications (1) SECURITY RESEARCH (1) security testing (3) security writeup (2) sensitive information disclosure (1) SQL injection (1) SSRF (1) Subdomain takeovers (1) ticket trick (1) unpatched vulnerability (1) vulnerability (1) vulnerability analysis (1) vulnerability assessment (1) vulnerability testing framework (1) Xiaomi (4) xiaomi browser 0day (2) xiaomi browser vulnerability (3) xiaomi security issue (3)

Connect With us

34.2k likes

Like

28.6k followers

Follow

8.6k subscribers

Subscribe

17.3k followers

+1

Recent News

About Me

A security researcher.
Learn More →

Contact Form

Name

Email *

Message *

Categories

Crafted with by TemplatesYard