Nahamsec interviews Jobert Abma
Note that during these interviews I also moderate thus quality may vary. Profile 🐝 cofounder HackerOne 29 years old started...
Read more →Category: Mix
How to prevent PHP type juggling vulnerabilities
How to prevent PHP type juggling vulnerabilities Source link
Read more →
![[tl;dr sec] #177 - AWS KMS Threat Model, DOM Invader, Forensics in the Cloud](https://cybernoz.com/wp-content/uploads/2023/04/tldr-sec-177-AWS-KMS-Threat-Model-DOM-Invader-scaled.jpg "[tl;dr sec] #177 - AWS KMS Threat Model, DOM Invader, Forensics in the Cloud 4")
[tl;dr sec] #177 – AWS KMS Threat Model, DOM Invader, Forensics in the Cloud
Hey there, I hope you’ve been doing well! Easter Ah Easter, the American holiday where we celebrate the resurrection of...
Read more →
The Hacker’s Guide to Sneaking in Through the Back Door: A Second Order IDOR Adventure
The Hacker’s Guide to Sneaking in Through the Back Door: A Second Order IDOR Adventure Source link
Read more →
Possible to spoof Origin in “Connected Sites”
MetaMask disclosed a bug submitted by renniepak: https://hackerone.com/reports/1710564 – Bounty: $1000 Source link
Read more →
Wanna hack zseano website and get paid? – Bounty Thursdays #28
Wanna hack zseano website and get paid? – Bounty Thursdays #28 Source link
Read more →
A Tale of Two Formats: Exploiting Insecure XML and ZIP File Parsers to Create a Web Shell
While researching a bug bounty target, I came across a web application that processed a custom file type. Let’s call...
Read more →
Practical Usage of NTLM Hashes
In my last series, I discussed various ways of getting command execution in Windows environments when you’ve compromised a valid...
Read more →