PinnedPravinrpinOSCP CheatsheetOSCP CheatsheetI would like to share whatever I have learned during the OSCP course so that others also will get the benefit. Because I have gained the…4 min read·Aug 1, 2019--23--23
PravinrpAppSec-Code Review & Python automation-story-2This is the sequel of python automation which I had posted earlier. In last blog, I had explained about how to install bodge open-source…2 min read·Oct 25, 2021----
PravinrpAppSec-Code Review & Python automation-story-1It has been long since I have posted in medium. I have been with my masters in cyber security all these days. However, I managed to come up…4 min read·Oct 22, 2021----
PravinrpWeb application Security-series 1-Authentication bypass test scenariosThis is going to be a series of blogs in web application security test scenarios and this is one of them. As we all know, web applications…3 min read·Mar 10, 2021--1--1
PravinrpFind the treasure hidden in JavaScriptThis is another bug bounty automation blog explaining my thought process for crawling and enumerating JavaScript file. Modern web…6 min read·Mar 9, 2021--2--2
PravinrpBug Bounty Automation for bypassing 403 response type pagesIt has been long since I have posted my blog on security. However, this time I would like to bring you a top of bug bounty. I know!! as a…2 min read·Mar 8, 2021--1--1
PravinrpBug Hunting: API secret token leaked in JS fileIn modern-day web applications, critical application development has been done on javascript files. Java script files contain some…3 min read·Oct 13, 2020----
PravinrpBug Hunting: CVE-2019–19781(Remote Code Execution)What is CVE-2019–19781?2 min read·Oct 13, 2020----
PravinrpBug Hunting: Sensitive information exposed in android strings.xml fileString.xml is a single location for various strings your application needs. Here every string has a unique id, this id you use in your…2 min read·Oct 12, 2020----