Santosh Kumar Sha(@killmongar1996) – Medium

Home

Following

Library

Reading history

Stories

Stats

Santosh Kumar Sha(@killmongar1996)

Unveiling a Critical Vulnerability: Exposing AWS Credentials in a Penetration Test

Introduction

Aug 20, 2024

Unveiling a Critical Vulnerability: Exposing AWS Credentials in a Penetration Test

Aug 20, 2024

Automating AWS Console Login Monitoring : A Comprehensive Guide

Hi, everyone!

Jul 12, 2024

Automating AWS Console Login Monitoring : A Comprehensive Guide

Jul 12, 2024

Automating AWS Security: Monitoring and Mitigating Compromised Credentials

Introduction

May 16, 2024

May 16, 2024

S3 Bucket Security Hardening Using SCP policy

Hi, everyone

Jul 11, 2023

S3 Bucket Security Hardening Using SCP policy

Jul 11, 2023

How I got access to Essilor International company customer PII INFO by AWS metadata access through…

Hi, everyone

Mar 21, 2023

How I got access to Essilor International company customer PII INFO by AWS metadata access through…

Mar 21, 2023

Out-Of-Bond Remote code Execution(RCE) on De Nederlandsche Bank N.V. with burp-suite collaborator

Hi, everyone

Aug 28, 2022

Out-Of-Bond Remote code Execution(RCE) on De Nederlandsche Bank N.V. with burp-suite collaborator

Aug 28, 2022

How I found reflected XSS on IDFC Bank with burp-suite Intruder

Hi, everyone

Aug 28, 2022

How I found reflected XSS on IDFC Bank with burp-suite Intruder

Aug 28, 2022

Automating reflected XSS with burp-suite Intruder

Hi, everyone

Jun 14, 2022

Automating reflected XSS with burp-suite Intruder

Jun 14, 2022

HOW I Found 17 Critical and Medium Security Bug on INDUSIND Bank along AWS Metadata access

Hi, everyone

Dec 25, 2021

HOW I Found 17 Critical and Medium Security Bug on INDUSIND Bank along AWS Metadata access

Dec 25, 2021

How I got access to Maxlifeinsurance insurance company customer PII INFO by AWS metadata access…

Hi, everyone

Dec 25, 2021

How I got access to Maxlifeinsurance insurance company customer PII INFO by AWS metadata access…

Dec 25, 2021

Exposing Millions of Investor and Startup Register details and PII INFO in STARTUPINDIA (Govt of…

Hi, everyone

Dec 24, 2021

Exposing Millions of Investor and Startup Register details and PII INFO in STARTUPINDIA (Govt of…

Dec 24, 2021

Exploiting S3 bucket with path folder to Access PII info of A BANK

Hi, everyone

Dec 9, 2021

Exploiting S3 bucket with path folder to Access PII info of A BANK

Dec 9, 2021

Finding multiple SSRF with AWS metadata access on A BANK system

Hi, everyone

Aug 14, 2021

Aug 14, 2021

How I was able Find mass leaked AWS s3 bucket from js File

Hi, everyone

Jul 20, 2021

How I was able Find mass leaked AWS s3 bucket from js File

Jul 20, 2021

How Github recon help me to find NINE FULL SSRF Vulnerability with AWS metadata access

Hi, everyone

Jun 5, 2021

Jun 5, 2021

Escalating SSRF to Accessing all user PII information by aws metadata

Hi, everyone

May 31, 2021

Escalating SSRF to Accessing all user PII information by aws metadata

May 31, 2021

Unauthorised access to Django Admin Dashboard by endpoint leaked on GitHub

Hi, everyone

May 10, 2021

Unauthorised access to Django Admin Dashboard by endpoint leaked on GitHub

May 10, 2021

Chaining CSRF with XSS to deactivate Mass user accounts by single click

Hi, everyone

May 1, 2021

Chaining CSRF with XSS to deactivate Mass user accounts by single click

May 1, 2021

AWS internal metadata accessed through SSRF by Chaining an Open Redirect bug

Hi, everyone

Apr 24, 2021

AWS internal metadata accessed through SSRF by Chaining an Open Redirect bug

Apr 24, 2021

Unauthorized access to admin setpassword page BY bypass 403 Forbidden

Hi, everyone

Apr 18, 2021

Unauthorized access to admin setpassword page BY bypass 403 Forbidden

Apr 18, 2021

Santosh Kumar Sha(@killmongar1996)

Santosh Kumar Sha(@killmongar1996)

Cloud Security |Security Researcher |Pentester | Bugbounty hunter|VAPT | Pentration tester | CTF player | topmate.io/santosh_kumar_sha

Following

Help
Status
About
Careers
Press
Blog
Privacy
Rules
Terms
Text to speech