Joakim Uddholm

Joakim Uddholm

Security Engineer with a dash of software. Originally from Stockholm, now in Berlin. I like to hack things.

shodan

infosec

kms.nhp.gov.in rooted via syncthing

In May last year (2022) I found and disclosed a vulnerability on a subdomain of nhp.gov.in. Using an exposed syncthing admin interface, I was able to gain root SSH access to the server by syncing the `/root/.ssh` directory.

Read