Publications

[updated on 01-August-21]

Following are some of the articles i have written in the past:

Fuzzing ImageMagick and Digging Deeper into CVE-2020-27829

Analyzing CVE-2021-1665 ā€“ Remote Code Execution Vulnerability in Windows GDI+

Jet Database Engine Flaw May Lead to Exploitation: Analyzing CVE-2018-8423 for McAfee

https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/jet-database-engine-flaw-may-lead-to-exploitation-analyzing-cve-2018-8423/

https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/jet-database-engine-flaw-may-lead-to-exploitation-analyzing-cve-2018-8423/

Adobe Flash vulnerability, CVE-2018-4878 analysis, for mcafee : https://securingtomorrow.mcafee.com/mcafee-labs/hackers-bypassed-adobe-flash-protection-mechanism/

Apache struts vulnerability, CVE-2017-9805 analysis, for mcafee : https://securingtomorrow.mcafee.com/mcafee-labs/apache-struts-at-rest-analyzing-remote-code-execution-vulnerability-cve-2017-9805/

Apache struts vulnerability, CVE-2017-9791 analysis, for mcafee : https://securingtomorrow.mcafee.com/mcafee-labs/analyzing-cve-2017-9791-apache-struts-vulnerability-can-lead-remote-code-execution/

OpenSSL vulnerability, CVE-2017-3731 analysis, for mcafee: https://securingtomorrow.mcafee.com/mcafee-labs/analyzing-cve-2017-3731-truncated-packets-can-cause-denial-service-openssl/

NTPd vulnerability, CVE-2016-9311 analysis, for mcafee: https://securingtomorrow.mcafee.com/mcafee-labs/analyzing-cve-2016-9311-ntpd-vulnerability-can-lead-denial-service/

Pinterest Scam Article for Virus Bulleting Magzine, Sept-2012 : http://www.virusbtn.com/virusbulletin/archive/2012/09/vb201209-Pinterest-scams.dkb?mobile_on=no

Pinterest Scam Toolkits,for mcafee: http://blogs.mcafee.com/mcafee-labs/peering-into-a-pinterest-scam-toolkit

Bitcoin botnets, for McAfee: http://blogs.mcafee.com/mcafee-labs/delving-deeply-into-a-bitcoin-botnet

AutoIT botnets, for McAfee: http://blogs.mcafee.com/mcafee-labs/vertexnet-botnet-hides-behind-autoit

Adobe CVE-2011-2462 Analysis,for mcafee: http://blogs.mcafee.com/mcafee-labs/inside-adobe-reader-zero-day-exploit-cve-2011-2462

Facebook Scam, for symantec: http://www.symantec.com/connect/node/1724331

Analyzing malicious code,Hakin9 magazine: http://hakin9.org/analyzing-malicious-code/

Software Security and Reverse Engineering – an article give brief introduction about software reverse engineering, for  Infosec Writers and developer IQ magazine : http://www.infosecwriters.com/text_resources/pdf/software_security_and_reverse_engineering.pdf

Understanding Sql Injection, for inforsecwriters and developerIQ magazine : http://www.infosecwriters.com/text_resources/pdf/SQL_Injection_HShah.pdf

Understanding Cross Site Scripting, for infosecwriters and developerIQ magazine: http://www.infosecwriters.com/Papers/XSS_HShah.pdf

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s