Who are we?

HTTPVoid is an application-security research team led by Rahul Maini and Harsh Jaiswal. Writeups here cover our own CVEs alongside deep dives where we reverse and weaponise public n-days from advisories or patch diffs.

Rahul and I (Harsh) have known each other since 2014. We met on Facebook, back when random groups there ran little hacking challenges, and kept collaborating here and there whenever something looked interesting. Over the years it became clear we liked the same corner of the craft: reading code, reading other people’s research and novel bugs, and learning new stuff along the way. That’s where most of our time went: reversing CVEs and digging up new bugs in open-source projects and enterprise software, together.

In 2021 we set up this blog as a place to put that work under one name. Not long after, we both joined ProjectDiscovery as researchers, and a lot of what we published there is cross-posted here. Treat this site as the archive of our work together.

In 2025 I (Harsh) left PD to co-found Hacktron AI. A few months later Rahul decided he wanted to join and work in the evolving AI-based security space, left PD, and joined Hacktron as a researcher. Rahul spends most of his time on research. I still do some, but most of mine now goes into product and research.

Posts

subscribe via RSS