Sandeep Kamble (sensfrx.ai)
@sandeepk.bsky.social
š¤ 9
š„ 7
š 31
the entrepreneur track stole the show hands down the best talks Iāve seen on entrepreneurship. BSides 0x05 š @BSidesNYC Next stop, Austin back home, I'll be speaking at Lascon 2025:
lnkd.in/g9FKKPKe
#BSidesNYC
8 months ago
0
0
0
NAT, firewalls, MFA all in place. Yet, I got in and walked away with sensitive data.
www.linkedin.com/posts/sandee...
?
loading . . .
Sandeep Kamble on LinkedIn: #redteam
NAT, firewalls, MFA all in place. Yet, I got in and walked away with sensitive data. BACKGROUND: Security is often seen as a stack of technologiesāfirewalls,ā¦
https://www.linkedin.com/posts/sandeep-kamble_redteam-activity-7295897745981067265-o-Cw?utm_source=share&utm_medium=member_ios
over 1 year ago
0
0
0
Recently, started focusing on selling before building. My notes from the
#book
"the mom test" by Rob Fitzpatrick
over 1 year ago
2
0
0
7 Vulnerabilities with high Severity that captured attention in 2024 from SecureLayer7 research. What are they?
www.linkedin.com/posts/sandee...
loading . . .
Sandeep Kamble on LinkedIn: Unauthenticated RCE in Adobe Coldfusion - CVE-2023-26360
7 Vulnerabilities with high Severity that captured attention in 2024 from SecureLayer7 research. What are they? BACKGROUND: At SecureLayer7, our research teamā¦
https://www.linkedin.com/posts/sandeep-kamble_unauthenticated-rce-in-adobe-coldfusion-activity-7278862275963183104-Gzt7
over 1 year ago
0
0
0
On December 20th, I had one of the toughest day Iāve faced in a while, but I didnāt stop. Hereās why:
www.linkedin.com/posts/sandee...
loading . . .
Sandeep Kamble on LinkedIn: On December 20th, I had one of the toughest day Iāve faced in a while, butā¦
On December 20th, I had one of the toughest day Iāve faced in a while, but I didnāt stop. Hereās why: - Inaccessible giveaways SL7ās holiday gifts were leftā¦
https://www.linkedin.com/posts/sandeep-kamble_on-december-20th-i-had-one-of-the-toughest-activity-7277538680712437760-0NFL?utm_source=share&utm_medium=member_ios
over 1 year ago
0
0
0
Hey security risk leaders: What if I told you thereās a way to make AI work for you without losing control? Hereās the breakdown:
www.linkedin.com/posts/sandee...
?
loading . . .
Sandeep Kamble on LinkedIn: Hey security risk leaders: What if I told you thereās a way to make AIā¦
Hey security risk leaders: What if I told you thereās a way to make AI work for you without losing control? Hereās the breakdown: BACKGROUND: - LLMs areā¦
https://www.linkedin.com/posts/sandeep-kamble_hey-security-risk-leaders-what-if-i-told-activity-7275707674975989760-Y2Qa?utm_source=share&utm_medium=member_ios
over 1 year ago
0
0
0
We fired a client. Not because we wanted to BUT
www.linkedin.com/posts/sandee...
loading . . .
Sandeep Kamble on LinkedIn: We fired a client. Not because we wanted to BUT because security isn'tā¦
We fired a client. Not because we wanted to BUT because security isn't up for negotiation. Security testing companies donāt usually talk about firingā¦
https://www.linkedin.com/posts/sandeep-kamble_we-fired-a-client-not-because-we-wanted-activity-7270916933967867905-x6jz
over 1 year ago
0
0
0
I was chatting with a security practitioner, and he mentioned that Red Teaming is not a glorified pentest. Hereās why a pentester from 2010 might disagree:
www.linkedin.com/posts/sandee...
loading . . .
Sandeep Kamble on LinkedIn: I was chatting with a security practitioner, and he mentioned that Redā¦
I was chatting with a security practitioner, and he mentioned that Red Teaming is not a glorified pentest. Hereās why a pentester from 2010 might disagree: TOā¦
https://www.linkedin.com/posts/sandeep-kamble_i-was-chatting-with-a-security-practitioner-activity-7267492356411523072-hfNI
over 1 year ago
0
1
0
Vulnerabilities that arenāt really vulnerabilities. Are you still accepting these in your Pentest reports? More details here:
www.linkedin.com/posts/sandee...
loading . . .
over 1 year ago
0
0
0
Web firewalls, SOCs, MFA, and fraud prevention are ready for Thanksgiving Friday. Hereās why it probably wonāt save you:
www.linkedin.com/posts/sandee...
?
loading . . .
Sandeep Kamble on LinkedIn: Web firewalls, SOCs, MFA, and fraud prevention are ready for Thanksgivingā¦
Web firewalls, SOCs, MFA, and fraud prevention are ready for Thanksgiving Friday. Hereās why it probably wonāt save you: Holiday exploitation in action: -ā¦
https://www.linkedin.com/posts/sandeep-kamble_web-firewalls-socs-mfa-and-fraud-prevention-activity-7265572508165111808-dlXz
over 1 year ago
0
1
0
Submitted Critical vulnerability... Submitted High vulnerability... Customer reviews them... Customer says, "Not a real issue!!!" Pentester explains again...
www.linkedin.com/posts/sandee...
loading . . .
Sandeep Kamble on LinkedIn: Submitted Critical vulnerability... Submitted Highā¦
Submitted Critical vulnerability... Submitted High vulnerability... Customer reviews them... Customer says, "Not a real issue!!!" Pentester explainsā¦
https://www.linkedin.com/posts/sandeep-kamble_submitted-critical-vulnerability-submitted-activity-7264744265497341952-DmQR?utm_source=share&utm_medium=member_desktop
over 1 year ago
0
0
0
Goa + Bugbounty Tips & Talk + Free Wireless Headphones at @seasides_conf
youtube.com/shorts/QgVnW...
loading . . .
Goa + Bugbounty Tips & Talks + Free Wireless Headphones
YouTube video by SecureLayer7 Cybersecurity
https://youtube.com/shorts/QgVnWTujWMk?si=Tsct0BnrPBWcDk30
over 1 year ago
0
2
0
Is $5M ARR a success or just the start of something bigger?
www.linkedin.com/posts/sandee...
?
loading . . .
Sandeep Kamble on LinkedIn: Is $5M ARR a success or just the start of something bigger? In 2016, Iā¦
Is $5M ARR a success or just the start of something bigger? In 2016, I started SecureLayer7 with Kishor Desarda with a simple goal: to offer top-notchā¦
https://www.linkedin.com/posts/sandeep-kamble_is-5m-arr-a-success-or-just-the-start-of-activity-7263415756892045312-zrBQ?utm_source=share&utm_medium=member_ios
over 1 year ago
0
0
0
What do you think? imagine if product managers actually started including security controls while writing PRDs.
www.linkedin.com/feed/update/...
loading . . .
Sandeep Kamble on LinkedIn: What do you think? imagine if product managers actually started includingā¦
What do you think? imagine if product managers actually started including security controls while writing PRDs. So, I met up with a bunch of product managersā¦
https://www.linkedin.com/feed/update/urn:li:activity:7262511610508787712/
over 1 year ago
1
0
0
PHP symlink exploit, anyone? š Was checking PTaaS platform & saw one of our pentesters found an exploit allowing access to other tenants sensitive data on cloud hosting! Yep, this reminds old symlink trick for reading config.php! Shared hosting has come far.
www.linkedin.com/feed/update/...
loading . . .
Sandeep Kamble on LinkedIn: PHP symlink exploit, anyone? So, I usually routinely check BugDazzā¦
PHP symlink exploit, anyone? So, I usually routinely check BugDazz PTaSS platform, and one of our pentesters found a vulnerability allowing access to otherā¦
https://www.linkedin.com/feed/update/urn:li:activity:7261861668350013441/
over 1 year ago
0
0
0
Detailed analysis of CVE-2024-39877: Apache Airflow Arbitrary Code Execution
blog.securelayer7.net/arbitrary-co...
loading . . .
CVE-2024-39877: Apache Airflow Arbitrary Code Execution
Apache Airflow is an open-source platform for programmatically authoring, scheduling, and monitoring workflows. While it offers robust features for managing complex workflows, it has experienced...
https://blog.securelayer7.net/arbitrary-code-execution-in-apache-airflow/
almost 2 years ago
0
0
0
How much money were you making when you were age of 22? It'll be interesting to read the comments. If you ask me approx 2,000 Rs / Month by selling Games CDs, windows installations etc.
almost 2 years ago
0
0
0
reposted by
Sandeep Kamble (sensfrx.ai)
r/netsec bot
almost 2 years ago
CVE-2024-39877: Apache Airflow Arbitrary Code Execution
loading . . .
CVE-2024-39877: Apache Airflow Arbitrary Code Execution
https://blog.securelayer7.net/arbitrary-code-execution-in-apache-airflow/
0
2
1
[Friday CVE Analysis Drop] We tackled an interesting CVE, reverse engineering it to show how it works Despite many challenges including selfsigned certificates and brute-forcing with a Python script we completed a detailed analysis of PaperCut
#cybersecurity
blog.securelayer7.net/analysis-of-...
loading . . .
Analysis of CVE-2023-39143 ā PaperCut RCE
Overview CVE-2023-39143 is a path traversal vulnerability found in Papercut MF/NG, a print management solution. This particular CVE only affects Windows installations prior to version 22.1.3. With...
https://blog.securelayer7.net/analysis-of-papercut-rce/
about 2 years ago
0
0
0
Releasing methodology followed by SecureLayer7 to bypass Appdome privacy security controls. Findings reveal positive impression has been confirmed against screen overlays, keyloggers, unauthorized copy/paste, and more.
securelayer7.net/download/pdf...
loading . . .
https://securelayer7.net/download/pdf/Appdome-mobile-apps-privacy-security-control-bypass-whitepaper.pdf
about 2 years ago
0
0
0
Operators of Malware-as-a-Service needs to find innovative way to takeover accounts. Chromium introduces Device Bound Session Credentials (DBSC) and where stolen cookies are worthless to attackers and one more step for privacy.
blog.chromium.org/2024/04/figh...
loading . . .
Fighting cookie theft using device bound sessions
Cookies ā small files created by sites you visit ā are fundamental to the modern web. They make your online experience easier by saving bro...
https://blog.chromium.org/2024/04/fighting-cookie-theft-using-device.html?m=1
about 2 years ago
0
0
0
A thread š§µ on a book, based on my personal experience. You will find learnings from this book.
over 2 years ago
0
0
0
When a man cries itās not because they are weak, it's because they have been strong for too long - Uchiha
over 2 years ago
0
0
0
Happy New Year, Everyone!
over 2 years ago
0
0
0
The Photograph of 2023ā¦. Running a cybersecurity is tough if a company not solving the cybersecurity problem. I was with SecureLayer7ās early-stage customer. And it was great meeting with them.
www.linkedin.com/posts/sandee...
loading . . .
Sandeep Kamble on LinkedIn: The Photograph... Holiday Dinner with longtime customers. Yes, this i...
The Photograph... Holiday Dinner with longtime customers. Yes, this is the year of the photograph, and it took me more than 5 years to bring them in frameā¦
https://www.linkedin.com/posts/sandeep-kamble_the-photograph-holiday-dinner-with-longtime-activity-7145602098821279744-635o
over 2 years ago
0
0
0
Today is the last day of the year. How you would like to make a memorial?
over 2 years ago
0
0
0
Looks like finally, icing started in Austin!
over 2 years ago
0
3
0
you reached the end!!
feeds!
log in
