Jun 3, 2019Facebook CTF 2019 — Product Manger WriteupI had a lot of fun playing the web challenges from the FBCTF 2019 — even for a little while. In this post I will talk about my thought process and the things that I tried. This one is about the first challenge called Product Manger, I thought it was…Programming4 min readProgramming4 min read
Dec 17, 2017Exploiting a tricky XSS in ZendeskSometime ago in the past, while fuzzing Zendesk randomly, I came across a very odd kind of sanitization technique in a JSON endpoint and even though this was a black-box approach, I would assume this was what was happening in their back-end server, can you spot the bug? $sanitized =…Security2 min readSecurity2 min read
