Pinned0x4KDStealing from scammers using SQL Injection | Ethical Hacking Payback — Part 1Have you ever heard about these loot box gambling sites where you can bet the items you won playing games (like CS:GO), and get better…8 min read·Nov 13, 2022--3--3
Pinned0x4KDHow I became a millionaire in 3h | Fintech Bug Bounty — Part 1Lately, I’ve been doing some pentesting on a bank. It’s not like they hired me, but I felt curious about their infrastructure and asked…4 min read·Jul 28, 2022--2--2
0x4KDRunning a MITM on a Google Play App | Fintech Bug Bounty — Part 3This article is the 3rd part of the “Fintech Bug Bounty” series.3 min read·Feb 4, 2024----
0x4KDGraphQL Exploitation Techniques | Fintech Bug Bounty — Part 2This article is the 2nd part of the “Fintech Bug Bounty” series.4 min read·Dec 11, 2022----
0x4KDGoogle SSO misconfiguration leading to Account TakeoverI’m a technical guy. However, this post doesn’t contain any technical details, but that’s because this bug doesn’t require any. I need to…4 min read·Oct 14, 2022--1--1
0x4KD(XSS) Account takeover using SteamThis story begins a couple of years ago. I was navigating through a gambling website (which I cannot disclose) when I decided I would…5 min read·May 1, 2022----