The network for creativity
Join 1.25M professional creatives like you
Connect with clients, get discovered, and run your business 100% commission-free
Creatives on Contra have earned over $150M and we are just getting started
Back to feedPost
I discovered an Insecure Direct Object Reference (IDOR) vulnerability in a practice web application that allowed unauthorized users to access other people's private snippets simply by changing a number in the URL. Using whatweb and manual inspection, I identified parameter tampering points and successfully accessed private data for five different users without authentication. The finding was documented in a comprehensive report including executive summary, technical details with screenshots, CVSS risk scoring, and step-by-step remediation instructions. This assessment demonstrates my ability to find broken access controls that automated tools miss and deliver clear, actionable fixes.
The network for creativity
Join 1.25M professional creatives like you
Connect with clients, get discovered, and run your business 100% commission-free
Creatives on Contra have earned over $150M and we are just getting started
Related posts
Just uploaded the 2nd Part of DLL Hijacking on #Substack
Where I analyzed real malware logs and discovered why non-admin users can execute code without triggering a single alert.
Link: https://substack.com/@manishrawat21/note/c-231073282?r=7dntti&utm_source=notes-share-action&utm_medium=web
Follow me, Soon I'm going to publish my Sigma Detection Rule for DLL Sideloading.
#Infosec #Detection #ThreatHunting #Splunk #Cybersecurity
رائع ❤
You have 3 seconds to win or lose a customer. Which one is your UI doing? ⏳🛑
Most SaaS and Fintech brands lose users before they even scroll. Why? Because the interface fails to answer the user's most basic question: "Can I trust this?"
In high-ticket industries like Fintech, AI, and Prop-Tech, design isn't just about "looking modern." It's about building immediate authority.
How I optimize for those first 3 seconds:
✅ Visual Hierarchy: Guiding the eye to the most important value proposition first.
✅ Trust Signals: Using clean, high-end layouts that scream professionalism.
✅ Frictionless Flow: Removing unnecessary steps that make users drop off.
I’m currently helping brands audit their landing pages to stop "conversion leaks."
Let’s chat or check out my latest case studies to see how I drive ROI through design. 🚀
This Just Changed Web Development
Trending
Figma Make
Go from idea to prototype in minutes. What are you designing?
aivideo
AI video tools are moving at warp speed. Which ones are you experimenting with?
illustration
Handcrafted illustration is bubbling up across the web. What are you drawing lately?
aidesignflow
AI tools are redefining design work. What's your current workflow?
freelancerlife
Freelancer life is wins, pivots, and everything in between. What’s yours right now?