Supun Halangoda (Suppa) – Medium

Home

Following

Library

Reading history

Stories

Stats

Supun Halangoda (Suppa)

Pinned

Published in
InfoSec Write-ups

OpenAI ChatGPT for Cyber Security

How OpenAI’s ChatGPT can be used for Cyber Security (For Red Teaming and Blue Teaming)

Dec 13, 2022

OpenAI ChatGPT for Cyber Security

Dec 13, 2022

Published in
InfoSec Write-ups

Exploiting IDOR in a Support Portal Chatbot

Sometimes, I avoid testing support or help portals, assuming they might be hosted on third-party platforms like Jira or Zendesk, to save…

Jan 15

Exploiting IDOR in a Support Portal Chatbot

Jan 15

Get an email whenever Supun Halangoda publishes.

By signing up, you will create a Medium account if you don’t already have one. Review our Privacy Policy for more information about our privacy practices.

Medium sent you an email at to complete your subscription.

Published in
InfoSec Write-ups

How a Unique Combination Opened the Door to an IDOR

Hello everyone! This write-up is part of my IDOR Diaries series, where I share insights on the various IDOR vulnerabilities I encounter…

Nov 10, 2024

How a Unique Combination Opened the Door to an IDOR

Nov 10, 2024

Published in
InfoSec Write-ups

Phishing using Google Sheets for Red Team Engagements

For educational purposes only. Unlawful use of phishing techniques is prohibited. Use responsibly, with proper authorization. Creators…

Jan 17, 2024

Phishing using Google Sheets for Red Team Engagements

Jan 17, 2024

Published in
InfoSec Write-ups

How to Correctly setup Android Penetration Testing on a MacBook

Here’s my way of setting up for a Android Pentest on a MacBook M2 Pro

Jan 3, 2024

How to Correctly setup Android Penetration Testing on a MacBook

Jan 3, 2024

Published in
InfoSec Write-ups

Hacking Wishlists in an E-commerce Web App (IDOR Diaries)

If you haven’t checked other writes on the IDOR Diaries series you check below write-ups

Dec 6, 2023

Hacking Wishlists in an E-commerce Web App (IDOR Diaries)

Dec 6, 2023

Published in
InfoSec Write-ups

Unveiling a Bug: Paying $1 and Receiving $100 (or Any Amount) in Return

Hi everyone, this write-up is about a vulnerability I discovered in a private bug bounty program. Due to privacy & legal concerns, I will…

Jun 23, 2023

Unveiling a Bug: Paying $1 and Receiving $100 (or Any Amount) in Return

Jun 23, 2023

Published in
InfoSec Write-ups

IDOR Vulnerability that exposed 17 Million user data (IDOR Diaries)

Hi all, this write-up is about a vulnerability I discovered a few months back on a private bug bounty program.

May 26, 2023

IDOR Vulnerability that exposed 17 Million user data (IDOR Diaries)

May 26, 2023

Published in
InfoSec Write-ups

$$ Bounties for Unauthenticated file read in Cisco ASA CVE-2020–3452

Hey Friends back again with a write-up, I’m bit lazy in writing Bug Bounty write-ups but here i am !!.

Aug 23, 2020

Aug 23, 2020

From XSS to a Directory Traversal

Hey Guys!! This is my first write up for a bug bounty. So Pardon me if I made any mistakes and also feel fee to express your idea below…

May 22, 2020

May 22, 2020

Exploiting Cisco Switches ( DHCP Attack)

In this chapter I’m demonstrating you to attack a DHCP Server in a weak network…this can be also known as a DoS attack (Denial of Service…

Apr 30, 2020

Exploiting Cisco Switches ( DHCP Attack)

Apr 30, 2020

CDP Flood Attack on Cisco Switches

I thought of doing some actual attacks using real network devices. If your are a Network Engineer or a Security Engineer , this will helps…

Apr 26, 2020

CDP Flood Attack on Cisco Switches

Apr 26, 2020

Supun Halangoda (Suppa)

Supun Halangoda (Suppa)

Hacker

Following

Lists

Bugbounty

7 stories2 saves

Help
Status
About
Careers
Press
Blog
Privacy
Rules
Terms
Text to speech