adding h1_analyst_* to username for normal users
HackerOne disclosed a bug submitted by refaat01: https://hackerone.com/reports/1770797 – Bounty: $500 Source link
Month: April 2023
Burp Suite roadmap for 2022 | Blog
Matt Atkinson | 13 January 2022 at 15:45 UTC This roadmap has now been updated. Please see our July 2022 roadmap update. With 2022 now…
빠른 테스팅을 위한 ZAP 단축키들
ZAP에서 자주 사용하는 단축키들 정리해둡니다. 개인적으로 Tab 계통(History, Fuzz, Sites, Scripts 등)은 3키 이상 눌러야 하기 때문에 대다수가 1-2 키 구성입니다. (물론 탭들도 쉽게 적용하는…
How Human Security Testing Helps the U.S. Government’s Zero Trust Mandate
One major reason for the progress is a May 2021 Executive Order that pushes federal agencies to speedily embrace the “never trust; always verify” cybersecurity…
One click to your attack surface: New simplified navigation
TL/DR: We’ve improved the navigation of our tool so that users can easily access the attack surface and scan settings. Improved navigation to the attack…
Custom Models Are AI’s Killer App
Created/Updated: February 12, 2023 The killer app for AI right now is the universal “custom AI model”. Consume your whole business. Or your whole life…
Look mom, I’m a GitHub Action Hero
The GitHub blog interviews me for their GitHub Action Hero series. GitHub recently interviewed me for their blog editorial entitled GitHub Action Hero: Victoria Drake.…
Ability to read any emails through IDOR on Nextcloud Mail
Nextcloud disclosed a bug submitted by ctulhu: https://hackerone.com/reports/1784681 – Bounty: $1500 Source link
A modern, elastic design for Burp Collaborator server | Blog
Matt Atkinson | 21 January 2022 at 14:40 UTC When we launched Burp Collaborator back in 2015, PortSwigger deployed a public Collaborator server that anyone…
Hack the AI Prompt 🤖
chatGPT는 출시 이후 정말 많은 것들을 바꿨습니다. 물론 실제 일에 큰 영향을 준다기 보단 여러 AI가 사람들의 많은 관심을 받게되면서 보안적인 관점에서도 충분한 고민과 기술의…
H1 Hackers Walk the Streets of Barcelona at H1-3493!
Live Hacking Events are the ultimate voyage for hackers selected to test their skills. This time our hackers had the chance to experience gothic architecture,…
Week in review: Microsoft patches zero-day, Apple security updates, HashiCorp Vault vulnerability
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Making risk-based decisions in a rapidly changing cyber climateIn this…