security researcher

NAVEEN
JAGADEESAN

Security Analyst CRTP Certified Security Researcher

6+ years breaking applications ethically. 350+ pentests, 60+ code reviews across Web, API, Mobile & Thick Client platforms. Writing about what I find.

Working at Societe Generale & previously SISA Information Security.

Read Writeups Whoami

350+

Pentests

60+

Code Reviews

50+

Blogs & CTF Writeups

Years

Latest Writeups

Vulnerability

OS Command Injection → Remote Code Execution

Dec 10, 2024 // critical

Business Logic

Hotel Booking Hack: Free Diamond Subscriptions & 12% Discounts

Oct 31, 2023 // high

Mass Assignment

Database Dump via Mass Assignment Vulnerability

Jul 13, 2023 // critical

Writeup

WAF Bypass → SQL Injection Database Dump

May 30, 2023 // high

View all 21 posts →

Connect

NAVEENJAGADEESAN

NAVEEN
JAGADEESAN