Bibek Khanal

Bug Bounty Hunter & Security Enthusiast

About Me

I'm Bibek Khanal, a passionate bug bounty hunter and self-taught cybersecurity enthusiast. I specialize in identifying vulnerabilities across websites, APIs, and applications using tools like Burp Suite, Nmap, and more. I enjoy exploring attack surfaces, writing detailed reports, and constantly improving my skills.

🔧 Tools I Use:

Burp Suite
Nmap
Dirsearch
Sublist3r
Waybackurls
Amass
Google Dorks
Github Recon

Writeups

RCE via File Upload Bypass on XYZ Platform

Discovered a remote code execution vulnerability by bypassing content-type restrictions during file upload.

XSS in Search Function of ABC Site

Identified a reflected XSS vulnerability affecting the search input of a major e-commerce platform.

IDOR in REST API of DEF App

Reported an insecure direct object reference vulnerability allowing access to other users’ data.

Contact Me

If you have questions, collaboration offers, or just want to say hi — feel free to reach out!