Rajat Raghav
xclow3n
Senior Content Engineer @ Hack The Box
Contents
Mischief Managed
Day Edition
+
100%
−
⤢
drag to wander the corridors · click a chamber to step inside
reveal it at once ➳
step inside ⟶
Contents of the Archive
close ✕
EncoDecept: HTB University CTF 2024
— Intended solution for EncoDecept challenge from Hack the Box University CTF 2024 involving Web Cache Deception, encoding differential attacks, and ORM leak exploitation.
Intergalactic Bounty: HTB University CTF 2024
— Exploiting Nodemailer parser discrepancies, bypassing HTML sanitization with MXSS, and achieving RCE through prototype pollution file overwrite in this HTB University CTF 2024 challenge.
Email Parser Discrepancy in Nodemailer
— Discovering two email parsing issues in Nodemailer that could lead to email misrouting. The first was patched in v6.9.16, and the second was finally patched in v7.0.7 after I reported it as a security advisory.
HTML Sanitize Bypass Using MXSS
— Discovering how Mutation XSS (MXSS) can bypass the sanitize-html library due to differences between htmlparser2 and browser HTML parsers, allowing XSS attacks through style and math elements.
Breaking Pingora: HTTP Request Smuggling & Cache Poisoning in Cloudflare's Reverse Proxy
— Found 3 HTTP request smuggling bugs and 1 cache poisoning vulnerability in Cloudflare's Pingora reverse proxy. All exploitable under default config. 3 CVEs, $5k bounty. Full technical breakdown and disclosure notes.
Testing AI for Vulnerability Research: 4 Approaches & Where I Failed
— Tested 4 AI-assisted approaches for finding vulnerabilities over one week. Found real bugs - 14 confirmed vulns in one target in 20 minutes. Also burned time on an approach that found nothing useful. Honest breakdown of what worked and what didn't.