Aseem Shrey (@aseemshrey) – Medium

Aseem Shrey (@aseemshrey)

Aseem Shrey (@aseemshrey)
in
Gojek Product + Tech

Compliance As Code How We Automate CIS Compliance For GCP

How our ProdSec (Product Security) team automate CIS compliance for Gojek’s scale.

Sep 21, 2021

Compliance As Code How We Automate CIS Compliance For GCP

Sep 21, 2021

Aseem Shrey (@aseemshrey)

Abusing Report Abuse

Originally posted : https://aseemshrey.in/abusing-report-abuse/

Oct 31, 2020

Abusing Report Abuse

Oct 31, 2020

Aseem Shrey (@aseemshrey)
in
InfoSec Write-ups

One Token to leak them all : The story of a $8000 NPM_TOKEN

Not long ago, I started a youtube channel, HackingSimplified.

Jun 19, 2020

One Token to leak them all : The story of a $8000 NPM_TOKEN

Jun 19, 2020

Aseem Shrey (@aseemshrey)

Attention to Details : Finding Hidden IDORs

How a huge travel portal’s customer PII data could’ve leaked through some remanant functionality.This lead me to discover a few IDORs.

Feb 29, 2020

Attention to Details : Finding Hidden IDORs

Feb 29, 2020

Aseem Shrey (@aseemshrey)

Mind your Logs : How a build log from a Jenkins leaked everything

How much can an inconspicuous Jenkins log leak ? — Everything

Dec 9, 2019

Mind your Logs : How a build log from a Jenkins leaked everything

Dec 9, 2019

Aseem Shrey (@aseemshrey)

Aseem Shrey (@aseemshrey)

Security Engineer @Gojek | Teaches CyberSecurity — HackingSimplified | CTF player with NULLKrypt3rs | Web App Exploitation and Reverse Engineering Enthusiast

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams