This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Dhiraj Mishra"
From OWASP
DhirajMishra (talk | contribs) m (→BIO) |
DhirajMishra (talk | contribs) m (Dhiraj Mishra) |
||
| (26 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| − | [[File:Dhiraj-Mishra | + | [[File:Dhiraj-Mishra.png|right|210px|Dhiraj Mishra]] |
| − | |||
==BIO== | ==BIO== | ||
| − | + | [http://twitter.com/RandomDhirah Dhiraj Mishra] is an active speaker and a bug hunter, discovered multiple zero days in modern web browsers, Metasploit Contributor. His work has been published on TheHackerNews, TheRegister & BleepingComputer. He works as a Security Consultant for Cognosec DMCC, former NotSoSecure and EY.<br> | |
| − | |||
| − | |||
| − | |||
==OWASP Contributions== | ==OWASP Contributions== | ||
| − | + | He has been contributing to OWASP from more than a year, as a volunteer to the open community, he is or has been :<br> | |
| − | + | * [https://www.owasp.org/index.php/WASPY_Awards_2016 Nominated for WASPY 2016] | |
| − | + | * [https://www.owasp.org/index.php/WASPY_Awards_2017 Nominated for WASPY 2017] | |
| − | * [https://www.owasp.org/index.php/WASPY_Awards_2016 Nominated for WASPY 2016 | + | * [https://www.owasp.org/index.php/Category:OWASP_Speakers_Project#tab=Available_Speakers Speaker of OWASP] for Mumbai, India with the area of Interest in OWASP Top 10 , EASPI , IoT , Dark Web. |
| − | * | ||
| − | * [https://www.owasp.org/index.php/Category:OWASP_Speakers_Project#tab=Available_Speakers Speaker of OWASP] for Mumbai , India with the area of Interest in OWASP Top 10 , EASPI , IoT , Dark Web. | ||
* Helping and Speaking Initiatives in [https://www.owasp.org/index.php/Mumbai OWASP Local Chapter Meet Mumbai] with chapter leader Narenda Choyal. | * Helping and Speaking Initiatives in [https://www.owasp.org/index.php/Mumbai OWASP Local Chapter Meet Mumbai] with chapter leader Narenda Choyal. | ||
| − | * [https://www.owasp.org/index.php/OWASP_Trainers_Database Call_For_Trainers] in OWASP Mumbai, India , being in Trainers DB | + | * [https://www.owasp.org/index.php/OWASP_Trainers_Database Call_For_Trainers] in OWASP Mumbai, India , being in Trainers DB. |
| − | * | + | * As a Chapter leader for [http://owasp.org/index.php/Mumbai_Student_Chapter Mumbai Student Chapter] making student endorse in Information Security and Spreading Idea's and Awareness via Chapter Meets. |
* Authors and Primary Editor's in [https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet SQL Injection Prevention Cheat Sheet.] | * Authors and Primary Editor's in [https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet SQL Injection Prevention Cheat Sheet.] | ||
* Author's and Primary Editor's in [https://www.owasp.org/index.php/DOM_based_XSS_Prevention_Cheat_Sheet DOM Based XSS Prevention Cheat Sheet. ] | * Author's and Primary Editor's in [https://www.owasp.org/index.php/DOM_based_XSS_Prevention_Cheat_Sheet DOM Based XSS Prevention Cheat Sheet. ] | ||
* Past Contributor in [http://owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet The Popular XSS Filter Evasion Cheat Sheet] where as ,this article is focused on providing application security testing professionals with a guide to assist in Cross Site Scripting testing. | * Past Contributor in [http://owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet The Popular XSS Filter Evasion Cheat Sheet] where as ,this article is focused on providing application security testing professionals with a guide to assist in Cross Site Scripting testing. | ||
* Lead of [https://www.owasp.org/index.php/SQL_Injection_Bypassing_WAF SQLi WAF Bypass] a very helpful cheat sheet which consists of a successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete),recommended by many Security Researchers. | * Lead of [https://www.owasp.org/index.php/SQL_Injection_Bypassing_WAF SQLi WAF Bypass] a very helpful cheat sheet which consists of a successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete),recommended by many Security Researchers. | ||
| − | * | + | * His contribution to [https://www.owasp.org/index.php/OWASP_Cheat_Sheet_Series OWASP Cheat Sheet Project] is the most. |
| − | == CWE Project Benchmark == | + | * Has a part of [https://sites.google.com/site/owaspmumbaichapter/ OWASP Mumbai Student Chapter] he as conducted a webinar for Bug Bounty as well. |
| + | |||
| + | == OWASP CWE Project Benchmark == | ||
* Contributor in [https://www.owasp.org/index.php/Benchmark OWASP Benchmark],contributed SQLi/XSS fuzz vectors as initial contribution towards adding support for WAF/RASP scoring. Many thanks to [https://www.owasp.org/index.php/Benchmark#tab=Acknowledgements '''Dave Wichers'''] | * Contributor in [https://www.owasp.org/index.php/Benchmark OWASP Benchmark],contributed SQLi/XSS fuzz vectors as initial contribution towards adding support for WAF/RASP scoring. Many thanks to [https://www.owasp.org/index.php/Benchmark#tab=Acknowledgements '''Dave Wichers'''] | ||
* Reach me on: [email protected] <br> | * Reach me on: [email protected] <br> | ||
| − | ==Bug | + | ==Bug Bounties== |
| − | + | [https://www.linkedin.com/in/mishradhiraj/ Dhiraj] as also spoken to BugCrowd LevelUp Conference, his areas of expertise in Application Security have listed him in Hall of Fame for companies and organizations such like, Facebook, Oracle, Intel, Department Of Defense, Bugcrowd, Netgear etc.<br> | |
| − | + | Blog : https://datarift.blogspot.in/<br> | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | Blog : | ||
| − | |||
| − | |||
| − | |||
Latest revision as of 19:20, 15 December 2019
BIO
Dhiraj Mishra is an active speaker and a bug hunter, discovered multiple zero days in modern web browsers, Metasploit Contributor. His work has been published on TheHackerNews, TheRegister & BleepingComputer. He works as a Security Consultant for Cognosec DMCC, former NotSoSecure and EY.
OWASP Contributions
He has been contributing to OWASP from more than a year, as a volunteer to the open community, he is or has been :
- Nominated for WASPY 2016
- Nominated for WASPY 2017
- Speaker of OWASP for Mumbai, India with the area of Interest in OWASP Top 10 , EASPI , IoT , Dark Web.
- Helping and Speaking Initiatives in OWASP Local Chapter Meet Mumbai with chapter leader Narenda Choyal.
- Call_For_Trainers in OWASP Mumbai, India , being in Trainers DB.
- As a Chapter leader for Mumbai Student Chapter making student endorse in Information Security and Spreading Idea's and Awareness via Chapter Meets.
- Authors and Primary Editor's in SQL Injection Prevention Cheat Sheet.
- Author's and Primary Editor's in DOM Based XSS Prevention Cheat Sheet.
- Past Contributor in The Popular XSS Filter Evasion Cheat Sheet where as ,this article is focused on providing application security testing professionals with a guide to assist in Cross Site Scripting testing.
- Lead of SQLi WAF Bypass a very helpful cheat sheet which consists of a successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete),recommended by many Security Researchers.
- His contribution to OWASP Cheat Sheet Project is the most.
- Has a part of OWASP Mumbai Student Chapter he as conducted a webinar for Bug Bounty as well.
OWASP CWE Project Benchmark
- Contributor in OWASP Benchmark,contributed SQLi/XSS fuzz vectors as initial contribution towards adding support for WAF/RASP scoring. Many thanks to Dave Wichers
- Reach me on: [email protected]
Bug Bounties
Dhiraj as also spoken to BugCrowd LevelUp Conference, his areas of expertise in Application Security have listed him in Hall of Fame for companies and organizations such like, Facebook, Oracle, Intel, Department Of Defense, Bugcrowd, Netgear etc.
Blog : https://datarift.blogspot.in/
