The major bug bounty debate: Which department should pay for rewards?
When launching a new bug bounty program, there’s usually a discussion around which department should ‘foot the bill’ for the...
Read more →Category: Mix
Reversing and Tooling a Signed Request Hash in Obfuscated JavaScript
I was hacking on a bug bounty program recently and discovered that the website is signing every request, preventing you...
Read more →
Crystal-Lang is ❤️
저는 최근에 Crystal-lang을 즐기고 있습니다. 간단한 토이 프로젝트부터 Noir란 사이즈가 점점 커지고 있는 프로젝트까지 Crystal을 통해 구현하고 있습니다. 오늘은 제가...
Read more →
Expert Code Review Meets Powerful Automation
Shipping clean, secure code should be easier. HackerOne originally acquired PullRequest in 2022 to power developer-first security solutions that enable...
Read more →![[tl;dr sec] #213 - AWS Secure Defaults, Damn Vulnerable LLM Agent, cdk-goat](https://cybernoz.com/wp-content/uploads/2024/01/tldr-sec-213-AWS-Secure-Defaults-Damn-Vulnerable-LLM.png "[tl;dr sec] #213 - AWS Secure Defaults, Damn Vulnerable LLM Agent, cdk-goat 34")
[tl;dr sec] #213 – AWS Secure Defaults, Damn Vulnerable LLM Agent, cdk-goat
I hope you’ve been doing well! ✈️ In Plane Sight I’ve gotta get something off my chest. Normally on planes...
Read more →
Wallarm Named a Leader in GigaOm Radar for API Security
I am thrilled to share that Wallarm, has been named a leader in the GigaOm Radar for API Security! We...
Read more →
LastPass Settings Upgrade, Boosting ChatGPT Output, AI Adding Societal Transparency
Unsupervised Learning is a Security, AI, and Meaning-focused podcast that looks at how best to thrive as humans in a...
Read more →
Boosting Election Integrity With Coordinated Vulnerability Disclosure [4 Insights]
1. This year, The first collaborative engagement dedicated to establishing trust and demonstrating progress through coordinated vulnerability disclosure occurred at...
Read more →
parameter pollution bug at twitter | by mert tasci
mert tasci · Follow 1 min read · Mar 11, 2023 — 1 Listen Share twitter sent an e-mail to...
Read more →
Piercing the Veal: Short Stories to Read with Friends | by d0nut
This feedback mechanism made me realize that this was more than a simple CRUD app and this service must be...
Read more →
a little open redirect bypass story | by mert tasci
in one private program at bugcrowd, i came across three different open redirect bug methods. firstthis is an effortless open...
Read more →
My Year in Review — 2020. So | by d0nut
While terribly disappointed, I still had drive left in me to do well for myself and continue onward. At this...
Read more →