devansh

06 Apr, 2026 On LLMs and Vulnerability Research
15 Mar, 2026 More egress filtering bypasses in harden-runner
09 Mar, 2026 Needle in the haystack: LLMs for vulnerability research
07 Mar, 2026 Four Vulnerabilities in Parse Server
02 Mar, 2026 Bypassing egress filtering in BullFrog GitHub Action using shared IP
01 Mar, 2026 Hacking Better-Hub
28 Feb, 2026 sudo restriction bypass via Docker Group in BullFrog GitHub Action
28 Feb, 2026 Bypassing egress filtering in BullFrog GitHub Action
11 Feb, 2026 [CVE-2026-25598] Bypassing Outbound Connections Detection in harden-runner
13 Jan, 2026 HonoJS JWT/JWKS Algorithm Confusion
10 Jan, 2026 Is Complexity just an illusion?
10 Jan, 2026 ElysiaJS Cookie Signature Validation Bypass
11 Dec, 2025 Do Your Bit Anyway
07 Dec, 2025 AI powered SAST : The New Frontier?
30 Nov, 2025 Reflections on my 5 years at HackerOne
07 Nov, 2025 Hitchhiker's Guide to Attack Surface Management
04 Nov, 2025 AI pentest scoping playbook
03 Nov, 2025 On AI Slop vs OSS Security
03 Nov, 2025 Art of Learning
22 Oct, 2025 On Higher Order thinking
21 Oct, 2025 On Learning
10 Feb, 2025 Fragility of The Internet: How Sacrificial Nameservers allowed potential DNS hijacking of 1.6+ million domains
28 Jan, 2025 Horrors of DNS: A Tale of 1800 potential domain takeovers due to mistyped NS
25 Jan, 2025 Trojan War against State-of-the-Art LLMs