A real-time bug bounty session focused on practical vulnerability testing and hands-on security analysis.

Follow the full workflow from target selection to testing and assessment, while breaking down the mindset behind each step. The goal is not just to…

Top disclosed reports from HackerOne. Contribute to reddelexc/hackerone-reports development by creating an account on GitHub.

Contribute to coffinxp/img-payloads development by creating an account on GitHub.

In this video, I explain a critical Business Logic vulnerability that allows a user to create a hidden workspace inside the owner’s organization without the owner being able to see it.

The hidden workspace remains fully accessible and usable by the invited…

In this video, I demonstrate an Advanced Business Logic Bug affecting organization member management.

By changing the account email to a specially encoded value, the organization admin becomes unable to remove the member from the organization. The application…