Piercing the Veil: Server Side Request Forgery to NIPRNet access | by Alyssa Herrera
During my reconnaissance of military websites as part of the Department of Defense’s vulnerability disclosure, I noticed two particular websites...
Read more →Category: Mix
The Bug That Exposed Your PayPal Password
And Credit Card Number Too Continue reading on Medium » Source link
Read more →
HOW DID THIS HAPPEN!? (13370822 LHE VLOG)
HOW DID THIS HAPPEN!? (13370822 LHE VLOG) Source link
Read more →
Exploiting Improper Validation of Amazon Simple Notification Service SigningCertUrl
Note: This is the “text notes” version of my DEF CON 30 Cloud Village Lightning Talk. The talk was not...
Read more →
Unauthenticated Remote Code Execution against CommVault Command Center
When Justin Kennedy and Brandon Perry asked me if I was interested in performing a little audit together, I couldn’t...
Read more →
Expanding the Attack Surface: React Native Android Applications
window.location.replace(“https://blog.assetnote.io/bug-bounty/2020/02/01/expanding-attack-surface-react-native/”); You can find this blog post on Assetnote’s blog. Source link
Read more →
Using Burp Suite match and replace settings to escalate your user privileges and find hidden features
On May 14th, Lew Cirne, the CEO of New Relic, announced a new platform called New Relic One. The platform,...
Read more →
Hacking Chess.com and Accessing 50 Million Customer Records
To preface: the bug we found here is really simple. The interesting thing here is the impact of the vulnerability...
Read more →
Old but GOLD Dot Dot Slash to Get the Flag — Uber Microservice – Ron Chan
Uber is built on a bunch of microservices, naturally, if you want to interact with microservice, you may want to...
Read more →
INTERVIEW w @SherlockSecure : TOP 15 on GITHUB | TOP 400 on BC | APPROACH, MINDSET & MORE…
INTERVIEW w @SherlockSecure : TOP 15 on GITHUB | TOP 400 on BC | APPROACH, MINDSET & MORE… Source link
Read more →
Hacking Razer Pay Ewallet App
Introduction This write-up is about hacking the Razer Pay Android app – an E-Wallet app used in Singapore and Malaysia....
Read more →