03 · Blogs
Writing
Articles and write-ups from personal posts and published work.
12 posts · 2 groups
External & internship
Janus: Listen to Your Logs
↗ ExternalAuthored the launch post for Janus, SpecterOps' open-source pipeline that ingests C2 telemetry (Mythic, Ghostwriter, Cobalt Strike), surfaces failure patterns and operator friction, and helps teams prioritize fixes and automation—without sending normalized operation data to external LLMs by default.
Pantheon Introduction: A Guide and Script Collection for Mythic Eventing
↗ ExternalAuthored a comprehensive guide for SpecterOps introducing Pantheon, a Mythic framework extension bundled with scripts and operational workflows.
Personal writing
How Hacking for Free Made Me Employable
tldr: bug bounty allowed me to start my career in offensive security early. a great representation of my desk Introduction: I found out about and started bug bounties in the beginning of high school while looking for…
Sneaky Patch Writeup TryHackMe
Hello everyone! Today I have completed the “ Sneaky Patch ” box, which is rated easy but is a forensics box which I have not had to much experience with. Although it was pretty straight forward. Lets start with reading…
One Bug at a Time: Patent Pirating using IDOR | RE’ing US Patent and Trademark Office for fun
Hello readers! Today I will be going into a fun story on how I used an IDOR within the US Patent and Trademark Office for fun with a… Continue reading on Medium »
One Bug at a Time: Admin Panel Access | I’m now an Employee!
Welcome back readers! Today, I will be sharing a story on a private program where I was able to get into an admin panel and manage the… Continue reading on Medium »
One Bug at a Time: $1,500 worth of XSS
Welcome back people! Today we will be digging into how to find XSS that others are not finding. Continue reading on Medium »
One Bug at a Time: In depth analysis of business logic vulnerabilities
Welcome back! Today I will be writing about a couple of my business logic vulnerabilities that I have found in public and private programs. These are one of my favorite bugs to hunt for because it requires a different…
One Bug at a Time: In depth analysis of 3 IDOR bugs
Hello everyone! Thank you for taking the time to read this blog. I will be going in depth on some bugs I have found recently. I will have to blur out a lot of information for company protection purposes but you will be…
One Bug at a Time: Last 15 days of #30daysofbugbounty
Sorry for the wait! Here is the rest of my 15 days of the #30daysofbugbounty challenge. Here are the stats that I will be breaking down for my last 15: Total Hours Spent: 20.95 hours Total Bugs Reported: 26 Triaged…
One Bug at a Time: First 15 days of #30daysofbugbounty
Before we start, thank you for coming here and reading this blog! Now lets get started with my first 15 days of the #30daysofbugbounty challenge. I got the idea from: Idea for 30 days of bug bounty Here are the stats…
One Bug at a Time: My First Paid Bug ($1,000 IDOR)
One Bug at a Time: I failed my quiz on purpose to get $1,000! Hello all! Glad to see you back : ) Today I will be writing about my first paid bug, it has a funny story line so read along! Here is the art for today’s…