Bug Bytes #201 – Path Traversal, Prompt Injection, and GitHub Actions
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by...
Read more →Category: Mix
Alex Rice and Zane Lackey Discuss Modern Security for Practitioners
Our co-founder and CTO, Alex Rice, was a recent guest on The Modern Security Series by Signal Sciences, along with...
Read more →
How I hacked Facebook and received a $3,500 USD Bug Bounty
Find out how our Security Researcher Frans Rosén hacked Facebook and found a stored XSS for which he received a bug...
Read more →
Samy Kamkar’s Security@ San Francisco Keynote
If you were into social networks during the MySpace era, you might recall the Samy Worm of 2005. The worm...
Read more →
Server-side Javascript Injections and more!
Today’s updates fill the needs of many of you out there! You asked for it, and now it’s in the...
Read more →
Hacking The Planet – Hack The World 2017 Recap
After 1 month of our community’s best and brightest going head to head to be named Hack The World 2017...
Read more →
Detectify Responsible Disclosure Program – Detectify Blog
As of today, researchers can report security issues in Detectify services to earn a spot on our Hall of Fame...
Read more →
Bringing Private-sector Security into the U.S. Government [Security@ Recaps]
“Hacking the U.S. Government” was the first panel discussion at Security@ SF, and it proved to be as interesting as...
Read more →
How we got read access on Google’s production servers
Few things are better than a good ethical hacking challenge and what could be more fun than finding a target...
Read more →
What percentage of your software vulnerabilities have GDPR implications?
GDPR is a regulation requiring organizations to protect the personal data and privacy of EU citizens for transactions that occur...
Read more →
Security testing behind login – Detectify Blog
A comprehensive security evaluation of any web application needs to be able to test areas behind a login. Find out...
Read more →
An Attorney’s View of Vulnerability Disclosure
Vulnerability Disclosure Programs (VDPs) are not only being promoted by more and more organizations and officials, they’re an easy-to-implement yet...
Read more →