Hey there! I'm a penetration tester, red teamer, and bug bounty hunter π΅οΈββοΈ. My expertise lies in exploiting vulnerabilities, bypassing security controls, and hunting for CVEs π. I enjoy breaking things (ethically!) and helping companies fix them before the bad guys do.
π Skills & Interests:
- π― Offensive Security | Penetration Testing & Red Teaming
- π΅οΈ Bug Bounty | Hunting for Vulnerabilities
- π CVE Research | Finding & Exploiting Zero-Days
- π Web & Mobile Security
- βοΈ Reverse Engineering
Here are some CVE IDs I have discovered and contributed to:
- π‘οΈ CVE-2024-5467 β Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in account lockout report
- β‘ CVE-2024-5556 β Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module
- π CVE-2024-38871 β Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module
- π CVE-2024-21775 β Zoho ManageEngine Exchange Reporter Plus versions 5714 and below are vulnerable to the Authenticated SQL injection in report exporting feature
More details on my CVE contributions can be found here
π¦ Twitter: @minhgalaxy1
π LinkedIn: minhgalaxy
πͺ² Hackerone: minhgalaxy
π Hack the Planet! π
Stay stealthy, stay ethical, stay ahead. π