Category: Mix
On May 27th, I reported a handful of security vulnerabilities to VMWare impacting their vRealize Operations Management Suite (vROps) appliance….
Motivations I recently made a video on how to find hidden files and folders on IIS through the use…
About four or five years ago, friend and fellow bug bounty hunter Sam Curry asked if I had “ever thought…
Overview On August 24th, 2022, we reported a vulnerability to Netlify affecting their Next.js “netlify-ipx” repository which would allow an…
ChiBrrCon 2020: Don’t Cross Me! Same Origin Policy and all the “cross” vulns Source link
![[Google VRP] SSRF in Google Cloud Platform StackDriver – Ron Chan](https://cybernoz.com/wp-content/uploads/2023/03/Google-VRP-SSRF-in-Google-Cloud-Platform-StackDriver-–-Ron-360x270.png "[Google VRP] SSRF in Google Cloud Platform StackDriver – Ron Chan")
During the process of testing GAE after reading this awesome blog post, I found a debug application in Google Cloud…
FROM 0 to $$$$ – MY BIGGEST BUG BOUNTY LEARNINGS! Source link
I was recently invited to present at BountyCon 2020. This was supposed to early March in Singapore where flights and…
For a healthy person in a first world country, the number of things we could do is near infinite. And…
Include This In Your Hacking Workflow by Continuous Monitoring with AuthoGraphQL (How-to guide) Source link
31 January 2020 You have probably heard of the SameSite attribute addition to HTTP cookies since Chrome 51 (and a…
Introduction You probably have read about my recent swamp of CVEs affecting a WordPress plugin called Transposh Translation Filter, which…