Category: Mix

we faced (w/ @celalerdik) an interesting ssti vulnerability on a bugcrowd’s program. we could show the traditional ’49’ number when…

Advent of Cyber 2022: Day 17 Filtering for Order Amidst Chaos (Walkthrough) Source link

Tl;DR; An OAuth misconfiguration was discovered in the redirect_uri parameter at the target’s OAuth IDP at https://app.target.com/oauth/authorize, which allowed attackers…

How They Got Hacked Episode Fifty Nine 59 Source link

If you’re a Burp Suite user, you’ll be familiar with Burp Collaborator: a service that allows you to monitor out-of-band…

Here’s why you need HackerContent Source link

🔍 Introduction SNI SNI(Server Name Indication)은 TLS의 확장 기능으로 handshake 과정 초기에 클라이언트가 어떤 호스트에 접속하는지 서버에게 알리는 역할을 수행합니다….

Playing With Idors With @IAmRenganathan | Hacker2Hacker | Hacking IRCTC #bugbounty Source link

Extreme Transparency or Corporate Security Responsibility? Source link

What made you want to become an ambassador? I wanted to become an ambassador mainly because I wished to create…

Can the govt. track your face in public? #shorts Source link

Note: The vulnerabilities that are discussed in this post were patched quickly and properly by Google. We support responsible disclosure….