Mohsin khan – Medium

Mohsin khan

Bypassing 2FA in a Public Bug Bounty Program: A $6000 Journey

As a bug bounty hunter, uncovering vulnerabilities in public programs is both thrilling and rewarding. In this post, I’ll walk you through…

May 4

Bypassing 2FA in a Public Bug Bounty Program: A $6000 Journey

May 4

The P2 Bug You Could Miss Without Reading the Documentation

Hi everyone,

Nov 27, 2024

The P2 Bug You Could Miss Without Reading the Documentation

Nov 27, 2024

The $2,200 ATO Most Bug Hunters Overlooked by Closing Intruder Too Soon

Bug hunting is a mix of technical skills, persistence, and curiosity. Sometimes, the simplest bugs are overlooked because of one thing —…

Nov 20, 2024

The $2,200 ATO Most Bug Hunters Overlooked by Closing Intruder Too Soon

Nov 20, 2024

Bypassing Filters: SSRF Exploitation via DNS Rebinding with Just 1 in 30 Successful Requests

Hey everyone, hope you’re all doing well! I wanted to share a cool bug story I came across a few months ago. It’s about an SSRF…

Sep 29, 2024

Bypassing Filters: SSRF Exploitation via DNS Rebinding with Just 1 in 30 Successful Requests

Sep 29, 2024

I Spent a Month on a Private Program and Earned $$$$$

I hope you all are doing great. I’m tweeting about taking on challenge where I will spend an hour on one program and see how it goes.

Sep 27, 2024

I Spent a Month on a Private Program and Earned $$$$$

Sep 27, 2024

What would I do if I start bug hunting from 0 again?

Hi everyone,

Sep 6, 2022

Sep 6, 2022

A business Logic issue worth $1500

Hello everyone,

May 21, 2022

A business Logic issue worth $1500

May 21, 2022

Account verification code bypass lead to a $4000 bounty

Hello reader,

May 8, 2022

Account verification code bypass lead to a $4000 bounty

May 8, 2022

You need to hear this if you are new/want to start bug hunting

Hello everyone,

Apr 27, 2022

You need to hear this if you are new/want to start bug hunting

Apr 27, 2022

Full account takeover worth $1000 Think out of the box

Hi everyone how are you doing today? I hope you are doing great and scoring lots of bounties. Today's story is about a bug I found on…

Feb 15, 2021

Full account takeover worth $1000 Think out of the box

Feb 15, 2021

Mohsin khan

Mohsin khan

Full-time bug hunter documenting my bug bounty journey. Follow: https://twitter.com/tabaahi_

Following

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech