Darshan Jogi – Medium

Feb 1

Password Spraying Attack 🚿

Hello everyone! 🎉 I'm Darshan, In this write-up, I am going to discuss a vulnerability that is commonly found, easy to find but less documented, and less discussed. What is a password spraying attack? A Password Spraying Attack is a type of brute force attack where a malicious attacker attempts…

Bruteforce Attack

3 min read

Nov 14, 2021

Account Takeover! Which companies don't accept 😞

Hello everyone! 🎉 Darshan here, This is my second Write-up. And In this write-up, I’m going to tell you about Authorization Code Grant Bug. Due to this issue, the Attacker can use the Authorization code again to login into the victim account. So, What is the Authorization code first of…

Bugbounty

3 min read

Account Takeover! Which companies don't accept 😞

Sep 29, 2021

Simple Parameter Tampering → Account Takeover

Introduction: Hi everyone! 🎉 Darshan this side . This is my 1st writeup .😃 On How I was able to login into any user account without user interaction. Well, I think it’s enough introduction, let’s get started! What is Parameter Tempering ? The Web Parameter Tampering attack is based on the…

Bug Bounty

2 min read

Simple Parameter Tampering → Account Takeover