Ambassador Spotlight AWC Edition: remonsec
What made you want to become an ambassador? It was around 2017 when I started hacking. I suffered from misguidance and scams that were alleging…
Category: Mix
Broken Link Hijacking – How expired links can be exploited
Broken Link Hijacking (BLH) exists whenever a target links to an expired domain or page. Broken Link Hijacking comes in two forms, reflected and stored.…
Detectify’s journey to an AWS multi-account strategy
In the past year, we’ve shifted our infrastructure from a single Amazon Web Services (AWS) account owned by our Platform team to multiple domain-specific accounts.…
Build your own serverless subscriber list with Go and AWS
How to build your own newsletter list with DynamoDB and SES email sign up confirmations. You can now subscribe to my email list on victoria.dev!…
Nahamsec interviews Jobert Abma
Note that during these interviews I also moderate thus quality may vary. Profile 🐝 cofounder HackerOne 29 years old started hacking at 11 years old…
How to prevent PHP type juggling vulnerabilities
How to prevent PHP type juggling vulnerabilities Source link
Yorkshire Post Building Demolition #3
Yorkshire Post Building Demolition #3 Source link
[tl;dr sec] #177 – AWS KMS Threat Model, DOM Invader, Forensics in the Cloud
Hey there, I hope you’ve been doing well! Easter Ah Easter, the American holiday where we celebrate the resurrection of Jesus by hiding eggs for…
The Hacker’s Guide to Sneaking in Through the Back Door: A Second Order IDOR Adventure
The Hacker’s Guide to Sneaking in Through the Back Door: A Second Order IDOR Adventure Source link
Possible to spoof Origin in “Connected Sites”
MetaMask disclosed a bug submitted by renniepak: https://hackerone.com/reports/1710564 – Bounty: $1000 Source link
Hacking APIs: Fuzzing 101
Hacking APIs: Fuzzing 101 Source link
Hey, what’s up?
Hey, what’s up? Source link