Khaleel Khan – Medium

Khaleel Khan

Pinned

Published in
T3CH

Full Account Takeover via Password Reset Link Manipulation

Introduction In 2021, while exploring the diverse landscape of cybersecurity vulnerabilities reported by the bug bounty community, I came…

Feb 1, 2024

Full Account Takeover via Password Reset Link Manipulation

Feb 1, 2024

Pinned

Published in
System Weakness

Using Shodan to Find and Exploit FTP Servers with Anonymous Access: A Step-by-Step Guide

This tutorial will walk you through a simple yet effective method to identify FTP servers that allow anonymous access. Anonymous FTP access…

Jun 12, 2024

Using Shodan to Find and Exploit FTP Servers with Anonymous Access: A Step-by-Step Guide

Jun 12, 2024

Pinned

Top 3 Essential Tools for Directory and File Enumeration in Penetration Testing

In the dynamic world of cybersecurity, bug hunting, and penetration testing are crucial for identifying and mitigating vulnerabilities. An…

Jan 2, 2024

Top 3 Essential Tools for Directory and File Enumeration in Penetration Testing

Jan 2, 2024

Pinned

NEWSTIDES — WAVE OF CHANGE

May 3, 2021

NEWSTIDES — WAVE OF CHANGE

May 3, 2021

Published in
System Weakness

CVE-2024–53677: A Critical Vulnerability in Apache Struts Exposing Over 83,000 Targets

A critical vulnerability, CVE-2024–53677, has been identified in the popular Apache Struts framework, threatening the security of thousands…

Dec 18, 2024

CVE-2024–53677: A Critical Vulnerability in Apache Struts Exposing Over 83,000 Targets

Dec 18, 2024

Published in
T3CH

Unveiling DetectDee: Advanced OSINT for Social Media Account Discovery

One such promising tool is DetectDee, an open-source project designed to identify social media accounts using usernames, email addresses…

Dec 16, 2024

Unveiling DetectDee: Advanced OSINT for Social Media Account Discovery

Dec 16, 2024

Published in
System Weakness

Unlock the Secrets of Mobile Security: Advanced IMEI Tools and Techniques Exposed!

Advanced IMEI Modification: Ethical Insights and High-Level Techniques for Cybersecurity Professionals

Dec 11, 2024

Unlock the Secrets of Mobile Security: Advanced IMEI Tools and Techniques Exposed!

Dec 11, 2024

Published in
System Weakness

A Deep Dive into Nmap Scripts for Web Application Testing

A Step-by-Step Guide to Leveraging Nmap’s Most Advanced Scripts for Comprehensive Web Application Security Analysis

Nov 13, 2024

A Deep Dive into Nmap Scripts for Web Application Testing

Nov 13, 2024

Published in
System Weakness

Beware of the Malicious Python Package ‘fabrice’: How Typosquatting is Stealing AWS Credentials

Understanding how a malicious PyPI package targeted unsuspecting developers to exfiltrate AWS credentials and establish backdoors on Linux…

Nov 10, 2024

Beware of the Malicious Python Package ‘fabrice’: How Typosquatting is Stealing AWS Credentials

Nov 10, 2024

CVE-2023–32191: Why You Need to Patch Your Rancher Kubernetes Engine (RKE) NOW to Avoid…

A new vulnerability appears with a CVSS score of 10, it’s a five-alarm fire for IT and security teams. This is the case with…

Nov 9, 2024

CVE-2023–32191: Why You Need to Patch Your Rancher Kubernetes Engine (RKE) NOW to Avoid…

Nov 9, 2024

Khaleel Khan

Khaleel Khan

Cybersecurity researcher with 18 years experience in state government, corporate sectors, and bug hunting enthusiast.

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams