1dayHow I Hacked Into a Nationwide University Database System Exposing Thousands of Student RecordsINTRODUCTIONSep 22, 202447Sep 22, 202447
InLevel Up CodingbyHamza Avvan4 XSSs With A Simple & Optimized PayloadCheck out how I earned $1250 by bypassing WAF in Steal User Information — Chaining XSS & Http Parameter Pollution using an amazing…May 11, 20244May 11, 20244
MS17-010🛡️How I Discovered an RCE Vulnerability in Tesla, Securing a $10,000 BountyMyself: I am Raguraman , Security Researcher 🛡️ | Bug Hunter | CTF Player | Secured @ Tesla,Apple,Amazon,Oracle & moreDec 24, 202322Dec 24, 202322
InOSINT TeambykerstanHow I Auto-Discovering SSRF on Hackerone ProgramDiscover how to automatically identify SSRF vulnerabilities in HackerOne programs. Learn techniques to enhance your bug bounty skills….Dec 15, 20231Dec 15, 20231
AJAK Cyber AcademyIs Cybersecurity Jobs Overcrowded in 2024? (My Current Situation😭)Hi, Ajak Amico’s welcome back to another blog. As I mentioned in the previous blog, I am currently searching for jobs in the UK for…Jan 23, 202426Jan 23, 202426
Ahmad YussefHow I discovered post based xss vulnerability at Hacker one platformJul 7, 2023Jul 7, 2023
InOSINT Teambyan0nbilHow I found my first ever bug.Vulnerable Google maps API key found in JS filesMar 17, 202416Mar 17, 202416
Cristian CorneaTop 25 Open Redirect Bug Bounty ReportsIn this article, we will discuss Open Redirect vulnerability, how to find one and present 25 disclosed reports based on this issue.Mar 27, 20201Mar 27, 20201
InSystem WeaknessbyS RahulBug Bounty { How I found an SSRF ( Reconnaissance ) }Hello everyone, I am S Rahul, working as a Information Security Analyst at NUK 9 Auditors and A Bug bounty hunter at Hackerone, Bugcrowd…Sep 6, 20229Sep 6, 20229
InInfoSec Write-upsbyan0nbilThis is the easiest bug you can find right now.Feb 21, 202413Feb 21, 202413
StealthyBug Bounty Remote Code ExecutionRemote Code Execution on a HackerOne Public Program →Aug 28, 2023Aug 28, 2023
ShawnHow to pass the 2023 OSCP (Pen-200) on the first try — Part 1 — EnumerationAssuming you’ve read the official Offsec exam information and how points are scored, this story is more about what you should know for the…Sep 29, 20233Sep 29, 20233
InInfoSec Write-upsbyKhaledyassenHow I Found Multiple XSS Vulnerabilities Using Unknown TechniquesHello, everyone. I hope you are well.Mar 5, 202434Mar 5, 202434
RaghavEnumeration with Nmap Scriptsls -al /usr/share/nmap/scripts/ | grep -e “ftp” ls -al /usr/share/nmap/scripts/ | grep -e “http” ls -al /usr/share/nmap/scripts/ | grep -e…Sep 27, 20211Sep 27, 20211
Viktor MaresALWAYS test 404 Not Found in Bug Bounties!Hi everyone, today I want to show why you should always test websites that have no “/” directory and what many other Bug Bounty hunters…Feb 6, 20247Feb 6, 20247
