RyanCloudfare XSS bypass + improper csrf token leads to account takeover of victim accounttl;drNov 30, 2022Nov 30, 2022
IttipatjitradaHow I found SSRF external interaction on Bugcrowd Public program in 5 minTools - https://subdomainfinder.c99.nl/ - burp suite - burp Collaborator - assetfinder : https://github.com/tomnomnom/assetfinder - httpx…May 24, 20223May 24, 20223
Ratnadip GajbhiyeHow to find & access Admin Panel by digging into JS files…🥰Hello All,🙂May 30, 202213May 30, 202213
Santosh Kumar Sha(@killmongar1996)How I found reflected XSS on IDFC Bank with burp-suite IntruderHi, everyoneAug 28, 20225Aug 28, 20225
Clark VossFinding Hidden Gems with Nuclei Templates!Lately, I have been thinking about automation.Aug 23, 20224Aug 23, 20224
InInfoSec Write-upsbyRavaanGauing+Nuclei for Instant BountiesBack again with the instant bounties series. Last time we learned how to score instant bounties with Google dorks so check that out if you…Jul 17, 20229Jul 17, 20229
InSystem WeaknessbyNiveet PalanHow To Hack Any Website[PART -3 Exploiting Trust]Dec 29, 20216Dec 29, 20216
Mr EmpyHow I found a critical P1 bug in 5 minutes using a cellphone — Bug BountyHello Hackers, I’m MrEmpy I’m 16 and welcome to my first article about a critical bug I found on mobile.Feb 6, 202211Feb 6, 202211
Mahmoud YoussefHow I Found multiple SQL Injection with FFUF and Sqlmap in a few minutesHello all, hope you’re OK. Our journey today is about how I found multiple SQL Injection in a BugBounty program in just few minutes with a…Nov 6, 202114Nov 6, 202114
Ahmad HalabiUltimate Reconnaissance RoadMap for Bug Bounty Hunters & PentestersAdvanced Reconnaissance and Web Application Discovery RoadMap to Find Massive Vulnerabilities.Dec 22, 202114Dec 22, 202114
AnonymousHow I Get $1350 From IDOR Just Less 1 hoursAssalamualaikum, wr,wb ,Dec 23, 20217Dec 23, 20217
