Yasser Mohammed (@n3r0li) – Medium

Yasser Mohammed (@n3r0li)

ASCWG24 — Bad (XS-Leaks)

TL;DR

Aug 3

ASCWG24 — Bad (XS-Leaks)

Aug 3

Published in
InfoSec Write-ups

Bug-Bounty Getting started & some tips

Collection of resources and some tips for Bug bounty By (@boomneroli)

Aug 22, 2021

Bug-Bounty Getting started & some tips

Aug 22, 2021

Published in
InfoSec Write-ups

Why u should use burp to test Path Traversal Vulnerability and also get RXSS

Hi everyone, It’s Yasser again (AKA Neroli) I told you that me and my brother (who is 16 years old) was doing some bugbounty and we found…

Aug 16, 2021

Why u should use burp to test Path Traversal Vulnerability and also get RXSS

Aug 16, 2021

Published in
InfoSec Write-ups

How we was able to takeover whole organization via Privilege Escalation

me and my brother hacking the world with HTML

Aug 13, 2021

How we was able to takeover whole organization via Privilege Escalation

Aug 13, 2021

Is Math.random() Safe? from missing rate limit to bypass 2fa and possible sqli

Hi everyone It’s Yasser Again,

Feb 20, 2021

Is Math.random() Safe? from missing rate limit to bypass 2fa and possible sqli

Feb 20, 2021

Published in
InfoSec Write-ups

OAuth Misconfiguration Leads to Full Account takeover

Hi Every one, My name is Yasser (AKA Neroli in CTF’s) and I wanted to share this Finding with you :)

Feb 13, 2021

OAuth Misconfiguration Leads to Full Account takeover

Feb 13, 2021

Yasser Mohammed (@n3r0li)

Yasser Mohammed (@n3r0li)

My Name Is Yasser and I am a CTF player and Competitive programmer, I Love to build things then break into it.

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams