himanshu pdy – Medium

Oct 10, 2021

Account Takeover — Story of 2 same issues in a single program but different sub-domains.

Hello Security folks, Here is interesting finding which I want to share.I only write when I find something unique or something interesting. Otherwise there are so many bug-hunters who find excellent security issues and write about them. There are tons of write-ups related to every security issue. My Twitter and…

Bug Bounty

3 min read

Account Takeover-Story of 2 same issues in a single program but different sub-domains in 10 minutes.

Jul 28, 2020

Company’s zendesk subdomain lead to hidden access.

Company’s zendesk subdomain lead to hidden access. Introduction:- Hi guys! My name is Himanshu Pdy, and I am a security researcher. This is my second blog :) let’s start without any delay. About the issue:- Here is my new unique writeup that i have recently found. …

2 min read

Nov 16, 2019

LDAP Admin Account Bypassed :)

Introduction : Hi guys! My name is Himanshu Pdy, and I am a security researcher. This is my first blog so ignore any grammatical mistake :) About the issue:- LDAP injection is an injection attack in which an attacker can insert malicious LDAP statements in to the original LDAP query used by an…

Security

3 min read