Mohsin khan – Medium

Mohsin khan

The P2 Bug You Could Miss Without Reading the Documentation

Hi everyone,

Nov 27, 2024

The P2 Bug You Could Miss Without Reading the Documentation

Nov 27, 2024

The $2,200 ATO Most Bug Hunters Overlooked by Closing Intruder Too Soon

Bug hunting is a mix of technical skills, persistence, and curiosity. Sometimes, the simplest bugs are overlooked because of one thing —…

Nov 20, 2024

The $2,200 ATO Most Bug Hunters Overlooked by Closing Intruder Too Soon

Nov 20, 2024

Bypassing Filters: SSRF Exploitation via DNS Rebinding with Just 1 in 30 Successful Requests

Hey everyone, hope you’re all doing well! I wanted to share a cool bug story I came across a few months ago. It’s about an SSRF…

Sep 29, 2024

Bypassing Filters: SSRF Exploitation via DNS Rebinding with Just 1 in 30 Successful Requests

Sep 29, 2024

I Spent a Month on a Private Program and Earned $$$$$

I hope you all are doing great. I’m tweeting about taking on challenge where I will spend an hour on one program and see how it goes.

Sep 27, 2024

I Spent a Month on a Private Program and Earned $$$$$

Sep 27, 2024

What would I do if I start bug hunting from 0 again?

Hi everyone,

Sep 6, 2022

Sep 6, 2022

A business Logic issue worth $1500

Hello everyone,

May 21, 2022

A business Logic issue worth $1500

May 21, 2022

Account verification code bypass lead to a $4000 bounty

Hello reader,

May 8, 2022

Account verification code bypass lead to a $4000 bounty

May 8, 2022

You need to hear this if you are new/want to start bug hunting

Hello everyone,

Apr 27, 2022

You need to hear this if you are new/want to start bug hunting

Apr 27, 2022

Full account takeover worth $1000 Think out of the box

Hi everyone how are you doing today? I hope you are doing great and scoring lots of bounties. Today's story is about a bug I found on…

Feb 15, 2021

Full account takeover worth $1000 Think out of the box

Feb 15, 2021

IDOR via Websockets allow me to takeover any users account

Hi everyone I hope you all are doing great and scoring lots of bounties. I am Mohsin khan I am from India and I do bug bounty full time…

Feb 14, 2021

IDOR via Websockets allow me to takeover any users account

Feb 14, 2021

Mohsin khan

Mohsin khan

Full-time bug hunter documenting my bug bounty journey. Follow: https://twitter.com/tabaahi_

Following

Help
Status
About
Careers
Press
Blog
Privacy
Rules
Terms
Text to speech