Exploring a race condition vulnerability where the server processes requests during partial account construction. The goal was to bypass email verification and gain unauthorized account creation.

Exploring Access Controls and also breaking access controls

Breaking flawed authentication workflows and session validation logic to gain unauthorized access to restricted user accounts.

Internal research and testing logs for Black Fire, a tool built to automate SSRF discovery and payload injection experiments.