Introduction: Greetings, fellow cybersecurity enthusiasts! I am Amjad Ali, a VAPT Analyst, bug hunter, and pentester, excited to share one of my recent findings with you. In this write-up, I will walk you through how I discovered and exploited a business logic flaw to bypass the payment process on a government…

Hey everyone 👋, Hope all are good and fine. I’m back with another write-up. If you missing the previous write-up stories you can check it out from here: https://amjadali110.medium.com/hyperlink-injection-726d8151b216. In this write-up i want to share with you the story of a recent finding I discovered during a Gray Box…

Hey everyone 👋, Amjad Ali here, a passionate cybersecurity enthusiast and a Pen Tester. Today, I’m thrilled to present an article co-authored by my friend Sahil Choudhary, where we will guide you through the exciting journey of setting up an Android Pen Testing Lab. If you’re eager to enhance your…

Hey everyone 👋, My name is Amjad Ali, and I’m a cybersecurity enthusiast. Recently, I found a hyperlink injection vulnerability within 10 minutes of testing and reported it to the Bugcrowd program. Within 6 hours, I received a $200 bounty, 5 points, Hall Of Fame and a P4 rating for…