I was able to find 3 DLL hijacking vulnerabilities in the Huawei Mobile Partner software and 10 XSS vulnerabilities in their website. I received a certificate of honor (PGP signed).
http://www.mediafire.com/view/lok7bmg6gs47nrc/Certificate%20of%20Honor.pdf
I found many web application security issues in the Sony Network and I got acknowledged in the hall of fame.
https://secure.sony.net/hallofthanks
I found a self XSS and got rewarded by SoundCloud 🙂
https://twitter.com/OsandaMalith/status/451157629591515136/photo/1
44 Retweets and 114 Favorites 🙂
Apparently I found another method to bypass 3rd degree profiles and I got a nice letter 🙂
Reported some issues related to the server side. Got a nice t-shirt and some sticker 🙂
Reported some issues related to SSL, regarding weak ciphers. http://www.reddit.com/user/Omega_Nuller/
For the first time I hunted Barracuda, and not bad I am listed at the 78th position out of 255 🙂
Reported a vulnerability relaters to the server side software. https://circleci.com/security/hall-of-fame
This is small automated tool for dumping stored browser passwords. No need to run as Administrator to function this properly. Fully written in Windows batch and VBS. This tool is based on the following tools by nirsfot.
Sometimes you AV would flag this as a malware but it is a false positive.
Download: http://osandamalith.github.io/BrowserFreak/
Thanks a lot for the nice review by Dimitrious Kalemis https://dkalemis.wordpress.com/2014/03/23/review-for-osanda-maliths-browser-freak-utility/
