Category: Mix

Scanning for hardcoded secrets in source code | Security Simplified
13
Mar
2023

Scanning for hardcoded secrets in source code | Security Simplified

Scanning for hardcoded secrets in source code | Security Simplified Source link

Clip: Subnets and Subnet Masks
13
Mar
2023

Clip: Subnets and Subnet Masks

Clip: Subnets and Subnet Masks Source link

[tl;dr sec] #171 - AppSec and CloudSec Resilience, Audit Logs Wall of Shame, Compromised Cloud to Kubernetes Takeover
13
Mar
2023

[tl;dr sec] #171 – AppSec and CloudSec Resilience, Audit Logs Wall of Shame, Compromised Cloud to Kubernetes Takeover

Hey there, I hope you’ve been doing well! Bingo with Flair 97% of Bingo games in America happen in a…

Interview with a bounty hunter - "I made 10k$!" - Virdoex_Hunter
13
Mar
2023

Interview with a bounty hunter – “I made 10k$!” – Virdoex_Hunter

Interview with a bounty hunter – “I made 10k$!” – Virdoex_Hunter Source link

information disclosure of another company bug on video.
13
Mar
2023

information disclosure of another company bug on video.

HackerOne disclosed a bug submitted by manish_adz: https://hackerone.com/reports/1886143 – Bounty: $500 Source link

Instagram App Access Token - These aren't the access_tokens you're looking for
13
Mar
2023

Instagram App Access Token – These aren’t the access_tokens you’re looking for

In Facebook Graph API as defined by the developer documentation, there are several access tokens, to authenticate against various API…

Build, Break, and Hack WebSockets
13
Mar
2023

Build, Break, and Hack WebSockets

Build, Break, and Hack WebSockets Source link

Is Apple deliberately killing our batteries?
13
Mar
2023

Is Apple deliberately killing our batteries?

Is Apple deliberately killing our batteries? Source link

Finding XSS on .apple.com and building a proof of concept to leak your PII information | by Sean (zseano)
13
Mar
2023

Finding XSS on .apple.com and building a proof of concept to leak your PII information | by Sean (zseano)

Back in February of this year I hacked with members of BugBountyHunter.com on a public bug bounty program and we…

Blind SQL Injection at fasteditor.hema.com | by Jonathan Bouman
12
Mar
2023

Blind SQL Injection at fasteditor.hema.com | by Jonathan Bouman

Proof of concept. The username of the database user starts with ‘hema’. BackgroundThese days almost every website uses a database….

Discovering a 16 Million Download/Week Node.js Package Zero Day for a Capture the Flag Challenge
12
Mar
2023

Discovering a 16 Million Download/Week Node.js Package Zero Day for a Capture the Flag Challenge

GovTech’s Cyber Security Group recently organised the STACK the Flags Cybersecurity Capture-the-Flag (CTF) competition from 4th to 6th December 2020….

The $16,000 Dev Mistake. Hello all! | by Daniel Marte
12
Mar
2023

The $16,000 Dev Mistake. Hello all! | by Daniel Marte

Hello all! Its been a while since my last write up. As a-lot of you know, last year I joined…