I'm a full-time cybersecurity engineer and part-time independent cybersecurity researcher.
-
π― CVE-2025-29471 β Stored XSS + Privilege Escalation in Nagios Log Server π₯PoC Code |
βΆοΈ PoC Demo -
𧨠Nagios Log Server β Elasticsearch DoS π₯PoC Code |
βΆοΈ PoC Demo -
π Nagios Log Server β API Key Exposure π₯PoC Code |
βΆοΈ PoC Demo -
π¨ Observability Platform Exploitation β Identified query abuse, authenticated DoS, and SSRF primitives in a widely deployed enterprise search backend.
-
π΅οΈ Sensitive Data Exfiltration β Exfiltrated 300+ customer policy documents from a misconfigured system at a Fortune 500 financial services provider.
-
π S3 Bucket Discovery β Located sensitive files exposed via public S3 buckets.
-
π³ CORS Misconfiguration β Identified credit card token leakage via overly permissive CORS headers on a LATAM-based food delivery service.
-
π§Ύ Privacy Issues β Discovered misconfigurations impacting user privacy and exposing PII through metadata from API endpoints on a widely used digital content platform.
Disclaimer: All findings were identified through independent research and disclosed responsibly to the affected vendors. Details have been intentionally withheld in accordance with program restrictions. This work was conducted outside of my employment and reflects my personal efforts in security research.
Check out bug-bounty β a growing repo of scripts I use in recon workflows.
- π LinkedIn - Seth Kraft
- π¦ Twitter @skraft09