Raymond Lind – Medium

Raymond Lind

All About SSRF (“Server-Side Request Forgery”)

Are you curious how to find SSRF vulnerabilities yourself? If so, lets take a look at what SSRF really is and go over many details of SSRF…

6 min readJan 30, 2023

--

All About SSRF (“Server-Side Request Forgery”)

--

Raymond Lind

Finding Reflected XSS In A Strange Way

Today I will be talking about how I foua reflected XSS (“Cross Site Scripting”) vulnerability in a very popular bug bounty program and…

9 min readNov 11, 2022

--

Finding Reflected XSS In A Strange Way

--

Raymond Lind

Privilege Escalation in Linux Systems

Looking for a way to gain root access after establishing the initial foothold in Linux systems? Here are some things to look for to…

10 min readOct 26, 2022

--

Privilege Escalation in Linux Systems

--

Raymond Lind

SSRF Bug Leads To AWS Metadata Exposure

How can you leverage an SSRF (“Server Side Request Forgery”) vulnerability to evade filters and leak internal AWS credentials on a web…

5 min readOct 26, 2022

--

1

SSRF Bug Leads To AWS Metadata Exposure

--

1

Raymond Lind

Stored XSS To Cookie Exfiltration

Today I will be explaining an XSS (“Cross Site Scripting”) vulnerability I found in a private bug bounty program that allowed me to…

8 min readOct 26, 2022

--

1

Stored XSS To Cookie Exfiltration

--

1

Raymond Lind

SSRF & LFI In Uploads Feature

Hello fellow hackers, today I will discuss how I found a Server-Side Request Forgery (SSRF) which lead to a Local File Inclusion (LFI) that…

6 min readOct 24, 2022

--

SSRF & LFI In Uploads Feature

--

Raymond Lind

How I Found A Simple Stored XSS

This is the story of how I found my first Stored XSS (“Cross Site Scripting”) vulnerability in a bug bounty program and a walk through on…

4 min readOct 24, 2022

--

3

How I Found A Simple Stored XSS

--

3

Raymond Lind

Raymond Lind

Passionate Cybersecurity Professional and Advocate. A Love For Ethical Hacking, Bug Bounty Hunting, And Protecting All Technology.

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams