Prateek Thakare 🇮🇳
@thakare_prateek
Followers
2K
Following
4K
Media
24
Statuses
750
Security Engineer | Synack Red Team member
Pune, India
Joined July 2018
It was a great experience speaking at @THREAT_CON. Thanks for inviting us and giving us the opportunity to share our knowledge. Hats off to the hospitality we received from the organizing committee. Also thanks a lot for the special memento.
3
1
28
RT @infosec_au: The @SLCyberSec research team is releasing our final research post for our Christmas in July efforts, two RCEs and one XXE….
slcyber.io
Vulnerabilities in AEM Forms The Searchlight Cyber Research Team discovered and disclosed three critical vulnerabilities in Adobe Experience Manager Forms to Adobe in late April 2025. As of writing...
0
58
0
RT @l33tdawg: Added a new Past Talks feature to #CFPDirectory that allows you to search for past presentations added by speakers complete w….
cfp.directory
Find talks, presentations, and keynotes from speakers in our directory. Discover presentation materials, recordings, and slides from conferences worldwide.
0
7
0
RT @l33tdawg: After 9 months+ of cranking, cursing, and cursoring, and drawing on over 20 years experience running #HITB's Call for Papers,….
cfp.directory
Connect speakers with conferences worldwide. Discover open CFPs, submit talks, and grow your speaking career.
0
36
0
RT @EchoesOfAries: Shocked to find severe battery acid damage in my Hyundai Creta 2023. Acid leaked onto the gear shifter cable and nearby….
0
5
0
RT @t0xodile: Thrilled to finally release my latest research "The Single-Packet Shovel: Digging for Desync-Powered Request Tunnelling". De….
assured.se
In this paper I will reveal the discovery of wide-spread cases of request tunnelling in applications powered by popular servers including IIS, Azure Front Door and AWS' application load balancer...
0
45
0
RT @Yogehi: Apparently @offensive_con worked their asses off to get their talks up on YouTube . Go check them out. And here's the coolest t….
0
33
0
RT @ThisIsDK999: Take a look at my blog w/ @Bugcrowd where I talk about RCE and one of the ways it landed me a critical payout!. https://t.….
bugcrowd.com
I like to think of RCE not just as a bug but as an impact. Why? Because there are numerous ways—literally 1001—to achieve RCE. The initial foothold for an RCE attack can vary significantly, ranging...
0
65
0
This 💯.
agree with sean here, and that’s why you should start doing ctfs or reversing vulnerabilities. you open a basic binary challenge in picoctf. but you never took any courses. it looks completely alien. you have no clue where to start. something in you wants you to solve it, for.
0
0
1
RT @LiveOverflow: I guess somebody was thinking outside. the. sand. box! . "Compromised renderer can control your mouse and escape sb….
0
30
0
RT @GodfatherOrwa: Hello everyone ♥.a little bit write-up of #bugbountytip #bugbountytips I am going to write here . Title:.getting u….
0
340
0
RT @sudhanshur705: A small writeup from my side also, solved it after the deadline was over 😅. Also I moved all my blogs in one place GitHu….
sudistark.github.io
This was really an interesting xss challenge by @J0R1AN. I solved this challenge after the challenge deadline was over but still wanted to do a blogpost cause why not :p
0
13
0
RT @alexjplaskett: A repo for learning various heap exploitation techniques by @shellphish.
github.com
A repository for learning various heap exploitation techniques. - shellphish/how2heap
0
50
0
RT @S1r1u5_: Imagine opening a Discord message and suddenly your computer is hacked. We discovered a bug that made this possible and earne….
0
177
0
RT @Bugcrowd: Tess went from fixing phones in NYC to becoming Bugcrowd’s Most Valuable Hacker in 2022. 👏. 🤫 His secret? Automation, collabo….
0
22
0
RT @eternalsakura13: My first V8 sandbox bypass vulnerability has been fixed, and I will continue to discover more.
0
40
0
RT @PortSwigger: In case you missed it, @albinowax 's amazing talk "Listen to the Whispers: Web Timing Attacks that Actually Work" from Def….
0
36
0
RT @tbbhunter: GitHub - PhonePe/mantis: Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulner….
github.com
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning. - PhonePe/mantis
0
3
0
RT @S1r1u5_: @xvonfers few weeks back I wrote this :). and also I will release basic exploitation video soon.
s1r1us.ninja
TL;DR As I was working on the script for my Discord RCE video, I took another look at Electron security and noticed that a lot of apps don’t fully understand how context isolation works and potential...
0
5
0
RT @ArmanSameer95: Here is a beautifully crafted blog post by @Bugcrowd, which was presented at my @bsidesahmedabad talk last month. The po….
0
12
0