Expanding the Attack Surface: React Native Android Applications
window.location.replace(“https://blog.assetnote.io/bug-bounty/2020/02/01/expanding-attack-surface-react-native/”); You can find this blog post on Assetnote’s blog. Source link
Category: Mix
Using Burp Suite match and replace settings to escalate your user privileges and find hidden features
On May 14th, Lew Cirne, the CEO of New Relic, announced a new platform called New Relic One. The platform, featuring a fresh new design…
Hacking Chess.com and Accessing 50 Million Customer Records
To preface: the bug we found here is really simple. The interesting thing here is the impact of the vulnerability itself. The reason I really…
Troopers 2019: Fun With LDAP and Kerberos
Recording Slides Source link
Old but GOLD Dot Dot Slash to Get the Flag — Uber Microservice – Ron Chan
Uber is built on a bunch of microservices, naturally, if you want to interact with microservice, you may want to use some REST apis to…
INTERVIEW w @SherlockSecure : TOP 15 on GITHUB | TOP 400 on BC | APPROACH, MINDSET & MORE…
INTERVIEW w @SherlockSecure : TOP 15 on GITHUB | TOP 400 on BC | APPROACH, MINDSET & MORE… Source link
Hacking Razer Pay Ewallet App
Introduction This write-up is about hacking the Razer Pay Android app – an E-Wallet app used in Singapore and Malaysia. It was an interesting journey…
Ideal Tasks and Use-Cases · rez0
I’ve been using ChatGPT for lots of hacking or engineering tasks. It’s extremely useful and much faster than executing on similar tasks without it. The…
Automating Permission Checks Using OpenAPI Security Scanner?
Automating Permission Checks Using OpenAPI Security Scanner? Source link
AWAE Course and OSWE Exam Review – RCE Security
This is a review of the Advanced Web Attacks and Exploitation (WEB-300) course and its OSWE exam by Offensive-Security. I’ve taken this course because I…
Broken Access Control – Lab #7 User ID controlled by request parameter | Long Version
Broken Access Control – Lab #7 User ID controlled by request parameter | Long Version Source link
Dangerous Code Hidden in Plain Sight for 12 years
Dangerous Code Hidden in Plain Sight for 12 years Source link