Latest Blog Posts

2nd Time in Microsoft

For the second time I got mentioned in Microsoft for the month of March 2014. I found a flash based open redirection vulnerability.

http://technet.microsoft.com/en-us/security/cc308589.aspx

Acknowledged by Huawei

I was able to find 3 DLL hijacking vulnerabilities in the Huawei Mobile Partner software and 10 XSS vulnerabilities in their website. I received a certificate of honor (PGP signed).
http://www.mediafire.com/view/lok7bmg6gs47nrc/Certificate%20of%20Honor.pdf

Acknowledged by Sony

I found many web application security issues in the Sony Network and I got acknowledged in the hall of fame.
https://secure.sony.net/hallofthanks

Acknowledged by SoundCloud

I found a self XSS and got rewarded by SoundCloud 🙂

https://twitter.com/OsandaMalith/status/451157629591515136/photo/1

44 Retweets and 114 Favorites 🙂

2nd Time by LinkedIn

Apparently I found another method to bypass 3rd degree profiles and I got a nice letter 🙂

Rewarded by Sendgrid

Reported some issues related to the server side. Got a nice t-shirt and some sticker 🙂

Awarded by Reddit

Reported some issues related to SSL, regarding weak ciphers. http://www.reddit.com/user/Omega_Nuller/

Rewarded by Rackspace Again

I got a surprise gift from Rackspace again. Thanks to Andy 🙂

Acknowledged by Barracuda Labs

For the first time I hunted Barracuda, and not bad I am listed at the 78th position out of 255 🙂

Acknowledged by Circleci

Reported a vulnerability relaters to the server side software. https://circleci.com/security/hall-of-fame


TRANSLATE