I came across an unauthenticated Remote Code Execution vulnerability (called CVE-2018-7841) on an IoT device which was apparently using a component provided by Schneider Electric…
Broken Access Control – Lab #10 User ID controlled by param with password disclosure | Short Version Source link
How some functions can be Dangerous | bin 0x01 Source link
Recently on a BugBounty program I came across my first XXE, blind what’s more, as I found this case interesting I wanted to share it…
Matt Atkinson | 30 March 2023 at 13:17 UTC More than 1,000 organizations are using Burp Suite Enterprise Edition to scale their web vulnerability scanning…
🎙️ Hacking, Open Source and Bug Bounty (Live Podcast) #2 Source link
Hacker Interviews: rez0__ Source link
Our Future As Hackers Is At Stake! Source link
This tweet from Rachel Tobac, a renowned social engineer, inspired me to write a short blog post. I also talked about the concept of password…
3CX VOIP Compromised & Supply Chain Threat Source link
Live Recon Stream #3: Tesla Source link
How to optimize your bug bounty program for long-term success. Bug bounty programs often have a whirlwind start. In those first few weeks, the submissions…
