PinnedMuhammad Julfikar HyderHacking API endpoints with IDORHey folks! It’s me, Muhammad Julfikar Hyder(thejulfikar) back again with a new article. I’m writing about an IDOR I identified a few days…4 min read·Jan 27, 2023--4--4
Muhammad Julfikar Hyder"sats3yhb4xt6" was indeed a valid ID for an invited user, and it was generated by the application.1 min read·Oct 30, 2023----
Muhammad Julfikar HyderPrivilege Escalation through ID ReflectionAs technology continues to advance, companies are becoming increasingly reliant on digital systems to store and manage their data. This has…3 min read·Mar 20, 2023--1--1
Muhammad Julfikar HyderHacking Cambridge University, a simple XSS exploit!Hey hackers! I hope you’re all doing well! Here I am back with another write-up of an easy XSS I found on the University of Cambridge’s…3 min read·Sep 8, 2021----
Muhammad Julfikar HyderHow I Won My First Bounty In 15 SecondsHello peoples, I’m Muhammad Julfikar Hyder from Bangladesh back again with my first bounty story today. You can also read my previous blog…3 min read·Aug 8, 2020----