Hi, everyone My name is Santosh Kumar Sha, I’m a Security Researcher/Ethical Hacker from India(Assam). In this article, I will be describing How I found reflected XSS on IDFC Bank with burp-suite Intruder SPECIAL Note: Don’t go outside test scope without any permission. Stay safe and also hack safe . Special request…

Hi, everyone My name is Santosh Kumar Sha, I’m a Security Researcher/Ethical Hacker from India(Assam). In this article, I will be describing how i found multiple reflected XSS using burp-suite intruder. SPECIAL COVID-19 Note: Don’t go outside without any reason . Stay home be safe and also safe other. Special request to my…

Hi, everyone My name is Santosh Kumar Sha, I’m a Security Researcher/Ethical Hacker from India(Assam). In this article, I will be describing HOW I Found 16 Critical and 1 Medium Security Bug on IndusInd Bank like SSRF aws Full access. SPECIAL COVID-19 Note: Don’t go outside without any reason . Stay home be…

Hi, everyone My name is Santosh Kumar Sha, I’m a security researcher from India(Assam). In this article, I will be describing How I was able Find multiple SSRF with aws metadata access ON a Maxlifeinsurance insurance company System and Get access to there production server. SPECIAL COVID-19 Note: Don’t go outside without any reason …

Hi, everyone My name is Santosh Kumar Sha, I’m a security researcher from India(Tinsukia, Assam). In this article, I will be describing how I was able to access million of startup register details by SSRF aws metadata exploitation. SPECIAL COVID-19 Note: As pandemics is not over. Please follow covid norms as we how…

Hi, everyone My name is Santosh Kumar Sha, I’m a security researcher from India(Assam). In this article, I will be describing How I Exploiting S3 bucket with path folder to Access PII info of A BANK using AWS cli . SPECIAL COVID-19 Note: Don’t go outside without any reason . Stay home be safe and…

Hi, everyone My name is Santosh Kumar Sha, I’m a security researcher from India(Assam). In this article, I will be describing How I was able Find multiple SSRF with aws metadata access ON a BANK System and Get access to there production server. SPECIAL COVID-19 Note: Don’t go outside without any reason …

Hi, everyone My name is Santosh Kumar Sha, I’m a security researcher from India(Assam). In this article, I will be describing How I was able Find mass leaked AWS s3 bucket from js File. SPECIAL COVID-19 Note: Don’t go outside without any reason . Stay home be safe and also safe other. Special…

Hi, everyone My name is Santosh Kumar Sha, I’m a security researcher from India(Assam). In this article, I will be describing how I was able to to find 9 full SSRF vulnerability with AWS metadata access BY doing some GITHUB recon. SPECIAL COVID-19 Note: Don’t go outside without any reason . Stay home…