Hello guys👋👋 ,Prajit here from the BUG XS Team . I am going to start a new write-up series, “Networking With SAPT”, which will help all those who want to learn networking, and I will start from complete basics, so anyone who doesn’t know a thing about computer networks, can…


Hello guys👋👋 ,Prajit here from the BUG XS Team , recently I got a valid Stored XSS-P2 via QR Code on a Bugcrowd private program, in this write-up I will discuss how I found it. Hope you enjoy it 😉!

So first before jumping directly into steps, let me give…


Hello guys👋👋 ,Prajit here from the BUG XS Team, it’s been a long time since my last story, sorry for the delay was held back in exams and viva😅. …


Hello guys👋👋 ,Prajit here from the BUG XS Team , recently I got acknowledgement for reporting a valid issue on Apple Program. So that bug is called Unauth Cache Purging. So let us take look at some of the important concepts which are important to understand the vulnerability.

What are Caches?

Caching is…


Hello guys👋👋 ,Prajit Here from the BUG XS Team. So, in this write-up I will be sharing the method that how I broke reset password logic to get account takeover without any interaction needed.

So before we start into what steps I performed, I need to first explain what was…


Hello guys👋👋 ,Prajit Here from the BUG XS Team, in this write-up I will be discussing about how I found SQL Injection vulnerability on one of the private program of Bugcrowd a while back.

So as you might already know SQL Injection is a P1 vulnerability, which could lead to…


Hello Guys 👋👋 , Prajit here from the BUG XS Team, so in this write-up I will be discussing the most easy P3-P4 vulnerability found on Bugcrowd 😈, and with which you can earn bounties pretty much easily.

So, I have got many many valid and bounties from this bug…


Hello Folks 👋 , in this write-up I will tell you how I ended up getting a 150$ bounty on a Bugcrowd Program.

My name is Prajit Sindhkar and I am a security researcher from India since a bit more than a year. I am also under Bugcrowd Top 500…

Prajit Sindhkar

I am a India Based Security Researcher, Bugcrowd Top 500 Hacker and Bug Bounty Leader of the BUGXS Community

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store