Piyush Raj

Piyush Raj (16)

Attracted to hardware hacking, likes to fiddle with software, open-source contributor/evangelist and an independent security researcher by night.

Piyush Raj

OS Command Injection on Node.JS Jison module

Node.Js

Finding OS Command Injection vulnerability which allows arbitrary shell command execution through a crafted command-line argument on Jison in parser ports began when I started receiving lots of invites over Hackerone. An injection vulnerability manifests when application code sends untrusted user input to an interpreter as…

Jump into →
Piyush Raj

The generic "Hello, world" — 0x48piraj

Hello, world

Today, I'm happy to announce the launch of this blog, all shiny and brand spanking new! It’s been two to three weeks in the decision making and coding and I'm really happy that the community can finally see it. There are still many major changes that have to be implemented in the website, but for now, it is…

Jump into →