A look back at 2021
It has become a tradition that I publish a review at the end of each year. Unlike previous years I...
Read more →Category: Mix
Hacking CI/CD (Basic Pipeline Poisoning)
Hacking CI/CD (Basic Pipeline Poisoning) Source link
Read more →
Framing, Part 1: Click-Jacking Etsy – Jack
Back in October, I found a couple of issues in Etsy, which when combined could be used in a click-jacking...
Read more →
Bug bounty and the EU Cyber Resilience Act – everything you need to know
The EU Cyber Resilience Act aims to protect Europe from increasingly sophisticated cyber-threats. The first quarter of 2023 has seen...
Read more →
limited freemarker ssti to arbitrary liql query and manage lithium cms | by mert tasci | Mar, 2023
we faced (w/ @celalerdik) an interesting ssti vulnerability on a bugcrowd’s program. we could show the traditional 49’ number when...
Read more →
Advent of Cyber 2022: Day 16 SQLi’s the king, the carolers sing (Walkthrough)
Advent of Cyber 2022: Day 16 SQLi’s the king, the carolers sing (Walkthrough) Source link
Read more →
How They Got Hacked Episode Fifty Eight 58
How They Got Hacked Episode Fifty Eight 58 Source link
Read more →
yet another Bug Bounty Reconnaissance Framework – honoki
An example use case of bbrf, here integrating with subfinder from projectdiscovery.io Like anyone involved in bug bounty hunting, I...
Read more →
Finding security vulnerabilities with GitHub’s new code search
Finding security vulnerabilities with GitHub’s new code search Source link
Read more →
Elixir Cheatsheet
1 min read 💎 Cullinan :: Develop Elixir Cheatsheet HAHWUL in cullinan Source link
Read more →
Let’s Recon With Vaibhav | Hacker2Hacker | #osint #bugbounty
Let’s Recon With Vaibhav | Hacker2Hacker | #osint #bugbounty Source link
Read more →