Cookie Tossing
Cookie Tossing Source link
Category: Mix
Smuggling an (Un)exploitable XSS – RCE Security
This is the story about how I’ve chained a seemingly uninteresting request smuggling vulnerability with an even more uninteresting header-based XSS to redirect network-internal web…
Broken Access Control – Lab #8 UID controlled by parameter, with unpredictable UIDs | Short Version
Broken Access Control – Lab #8 UID controlled by parameter, with unpredictable UIDs | Short Version Source link
When You Use One Wrong Javascript Module
When You Use One Wrong Javascript Module Source link
Basic recon to RCE II
I originally wanted to name this article “The RCE that everyone missed”, but since it was too “clickbait”, this is the title you see now.…
Packetlabs Ltd delivers advanced testing capabilities with Burp Suite Certified Practitioners | Blog
Emma Stocks | 27 January 2023 at 11:11 UTC We launched the Burp Suite Certified Practitioner (BSCP) certification at the end of 2021 due to…
[Research] Phishermans Friend – Getting control over a phishing backend
Dear Readers, once in a while I enjoy blogging about things unrelated to bug bounties. And so, as it happens, on a quiet Thursday night…
How to Hunt for Zip Slip Exploits in Open Source Bug Bounty | huntr.dev #methodology
How to Hunt for Zip Slip Exploits in Open Source Bug Bounty | huntr.dev #methodology Source link
I QUIT RECON… and made $10,000 in bounties!
I QUIT RECON… and made $10,000 in bounties! Source link
Let’s Nmap
Let’s Nmap Source link
[INTERVIEW] [France 3 Alpes] Interview on Ethical Hacking
[INTERVIEW] [France 3 Alpes] Interview on Ethical Hacking Source link
VPNs, Proxies and Secure Tunnels Explained (Deepdive)
VPNs, Proxies and Secure Tunnels Explained (Deepdive) Source link