YoungVandainInfoSec Write-upsMeteor Subdomain TakeoverIn this write-up I’m gonna talk about Meteor Subdomain Takeover. From a simple recon to one of the trickiest exploitations of my life 😉6 min read·Jan 29, 2024--2--2
YoungVandainInfoSec Write-upsThe Art of Monitoring Bug Bounty ProgramsWhat would’ve happened if you were the first hunter working on a target? Or if you could possibly see every single changes of the programs?3 min read·Sep 26, 2023----
YoungVandainInfoSec Write-upsSwagger XSS Mass HuntingHi guys, in this write-up, I’m gonna explain my own approach towards Swagger XSS and why I don’t use the Nuclei template (…2 min read·Jul 29, 2023--6--6
YoungVandainInfoSec Write-upsMy Second VDP Bug Went Critical: Grafana Admin Panel BypassHi guys, in this write up I wanna talk about my own methodology for finding Grafana admin panel and how I was able to get full access.3 min read·May 18, 2023--6--6