Ramkumar NadarStrange XSSContext: Original XSS was found by the initial tester, I did the confirmatory/reassessment test.2 min read·Jan 7, 2024----
Ramkumar NadarI bought Raspberry Pi 4 to learn WiFi hackingI’ve faced some unique problems while setting it up. With this write-up, I would like to share my experiences resolving that problem and…6 min read·Sep 30, 2023--1--1
Ramkumar NadarHidden XSSLearn the hard way that our typical XSS payload won’t execute if it is reflected in the hidden tag ( <input type =”hidden”> ).1 min read·Jul 23, 2023----
Ramkumar NadarCombining Python + ChatGPT + Payload Processor (burp) for brute forcing OTPI failed big in this one and I failed forward. Sharing my experience through this article.6 min read·May 20, 2023----
Ramkumar NadarCreate dump files (memory dumps) of Internet Explorer.The client’s org where I work has a checklist that pertains to checking sensitive information stored in the browser processes by the…4 min read·May 13, 2023----
Ramkumar NadarEasy SQL injection through BurpAbout two months ago I did this lab from Portswigger academy wherein I learnt that instead of doing a full scan on the target or request…3 min read·Mar 26, 2023----
Ramkumar NadarAccount Takeover in an Android ApplicationThis is my first major finding in the mobile (android) pen test.3 min read·Mar 21, 2023----
Ramkumar NadarI did JSON CSRF or did I?In this article, I am going to dissect how I performed the JSON CSRF. By the time you reach climax, I hope you realize the futility of it…6 min read·Mar 21, 2023--2--2
Ramkumar NadarActive Directory Explained.Active Directory is another one of these things whose explanation for me was far more cryptic than the actual thing itself. After…4 min read·Feb 26, 2023----