Open in app

Sign In

Write

Sign In

Alaa Abdulridha
Alaa Abdulridha

698 Followers

Home

About

Published in

InfoSec Write-ups

·Pinned

How I hacked Facebook: Part Two

Description: This is the second and final part of How I hacked Facebook you can find part one here [ How I hacked Facebook: part one ]. I highly recommend reading part one to understand the storyline. In part one I have found Account takeover by an unsecured API which…

Facebook

8 min read

How I hacked Facebook: Part Two
How I hacked Facebook: Part Two
Facebook

8 min read


Published in

SerpApi

·May 16

Safeguarding Web Scraping Activities with SerpApi: Protecting Privacy and Security

In this article, we will explore how SerpApi safeguards web scraping activities, ensuring the privacy and security of users’ data. Introduction Web scraping has become an integral part of data acquisition in various domains, enabling businesses, researchers, and developers to gather valuable information from the web. However, conducting web scraping activities…

Serpapi

3 min read

Safeguarding Web Scraping Activities with SerpApi: Protecting Privacy and Security
Safeguarding Web Scraping Activities with SerpApi: Protecting Privacy and Security
Serpapi

3 min read


Published in

InfoSec Write-ups

·May 5, 2022

I have 1% chance to hack this company

Today I will share with you the first vulnerability I found on SerpApi, LLC. I found this vulnerability right after I finished my onboarding process at SerpApi, LLC. Table of Contents — The Target. — Weaponizing the vulnerability. — Exploitation. — Impact and severity. — Report timeline. — Ending. The Target SerpApi is a real-time…

Ssrf

5 min read

I have 1% chance to hack this company
I have 1% chance to hack this company
Ssrf

5 min read


Feb 21, 2022

Google Images best alternative — Naver Images API

Today we will talk about the Naver Images API, it might be one of the best alternatives for Google Images API As we know, the Naver engine handles 74.7% of all web searches in South Korea which might be the same number for Images API in Naver. Naver developers put…

Naver Images Api

4 min read

Google Images best alternative — Naver Images API
Google Images best alternative — Naver Images API
Naver Images Api

4 min read


Published in

SerpApi

·Dec 3, 2021

Reverse engineering Google Finance charts

In this article, we will talk about how to reverse engineer Google finance charts to parse them using Ruby on Rails. Introduction ‌ ‌ When you search in Google for something like Bitcoin price or bitcoin vs dollar we will notice a chart and very rich finance data, originally the source of…

Serpapi

3 min read

Reverse engineering Google Finance charts
Reverse engineering Google Finance charts
Serpapi

3 min read


Published in

InfoSec Write-ups

·Sep 24, 2021

ASP.NET CORE Path Traversal

Path Traversal: A path traversal attack (also known as directory traversal) aims to access files and directories that are stored outside the webroot folder. By manipulating variables that reference files with “dot-dot-slash (../)” sequences and its variations or by using absolute file paths, it may be possible to access arbitrary files and…

Path Traversal

4 min read

ASP.NET CORE Path Traversal
ASP.NET CORE Path Traversal
Path Traversal

4 min read


Published in

SerpApi

·Jun 7, 2021

Individual background check using SerpApi

Automate background checks to the next level. What does a Background check mean? — A background check is a process that a person or company uses to verify that an individual is who they claim to be, and this provides an opportunity to check and confirm the validity of someone’s…

Serpapi

4 min read

Individual background check using SerpApi
Individual background check using SerpApi
Serpapi

4 min read


Published in

InfoSec Write-ups

·Apr 8, 2021

SerpScan -Automate your Recon using search engines

Serpscan is a powerful PHP tool designed to allow you to leverage the power of dorking straight from the comfort of your command line. As in the title, today I’m presenting a new tool, but maybe it’s an idea more than a tool for those who are looking to make…

Bug Bounty

4 min read

SerpScan -Automate your Recon using search engines
SerpScan -Automate your Recon using search engines
Bug Bounty

4 min read


Published in

InfoSec Write-ups

·Dec 11, 2020

How I hacked Facebook: Part One

We’ve been in this pandemic since March and once the pandemic started I was having plenty of free time, And I need to use that time wisely, So I’ve decided to take the OSWE certification and I finished the exam on 8 of August, after that, I took a couple…

Facebook

4 min read

How I hacked Facebook: Part One
How I hacked Facebook: Part One
Facebook

4 min read

Alaa Abdulridha

Alaa Abdulridha

698 Followers

Cybersecurity Engineer and #OSWE certified

Following
  • Ahmad A Abdulla

    Ahmad A Abdulla

  • Bipin Jitiya

    Bipin Jitiya

  • hartator

    hartator

  • Sean (zseano)

    Sean (zseano)

  • Murtada Kamil

    Murtada Kamil

See all (8)

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech

Teams