Himanshu's Home

This is my homepage: I am Cyber Security researcher who enjoys tinkering with stuff

DEFCON 31 (2023) Finalist: 2nd Place

Public Profiles

• Blog
• Github
• Twitter
• Mastodon
• CTF time

My Publicaction

• Blog

Blogs published on company websites

• Navigating the maze of Magecart: a cautionary tale of a Magecart impacted website
• How Cloudflare’s AI WAF proactively detected the Ivanti Connect Secure critical zero-day vulnerability
• All Cloudflare Customers Protected from Atlassian Confluence CVE-2023-22515
• Unmasking the top exploited vulnerabilities of 2022
• Cloudflare observations of Confluence zero day (CVE-2022-26134)
• WAF mitigations for Spring4Shell
• Vulnerable Joomla! Installation under active attack
• One-click fraudsters extend reach by learning Chinese
• Facebook Scam Leads to Nuclear Exploit Kit

Talks

• VB2017 paper: The router of all evil
• VB2016 paper: One-click fileless infection

Patent

• Systems and methods for securing contactless cards from unauthorized payments
• Ransomware locked data decryption through ransomware key transposition

Papers

• The increased use of Powershell in attacks
• Living off the land and fileless attack techniques

Fun Projects

• Cloud Intel
• High Fidelity Threat Intel, Atomic IOCs targeting Public cloud platforms

• Personal LLM
• Llama 2 based personal LLM hosted on Cloudflare Workers

• Legally Blocked
• Website to track blocked websites, applications globally

• UK Strike Calendar
• A Calander created using ChatGPT and Cloudflare Workers