🔹 HackTheBox Writeup — MonitorsTwo

📆 Mon, 08 May 2023 16:52:10 GMT

#️⃣ #writeup #hackthebox

🔹 Bug Bounty Program and Its Latest Opportunities

📆 Mon, 08 May 2023 16:29:10 GMT

#️⃣ #bug_bounty_tool #bug_bounty_google #bug_bounty_writeup #bug_bounty_program #bug_bounty

🔹 Populating Burp Suite’s Sitemap using SpiderSuite crawler

📆 Mon, 08 May 2023 16:55:41 GMT

#️⃣ #burpsuite #cybersecurity #penetration_testing #crawling #bug_bounty

🔹 Blue — TryHackMe Room

📆 Mon, 08 May 2023 16:54:17 GMT

#️⃣ #pentesting #cybersecurity #penetration_testing #ethical_hacking #bug_bounty

🔹 ’Py’ ‘GO’ Decode! — Decoding strings
A beginner’s note

📆 Mon, 08 May 2023 17:21:58 GMT

#️⃣ #bug_bounty #golang #cybersecurity #decode #python

🔹 IPv6 DNS Takeover via mitm6 (Write Up)

📆 2023-05-08

#️⃣ #MiTM

🔹 How a simple Directory Listing leads to PII Data Leakage, Remote Code Execution and many more vulnerabilities on a HR management subdomain

📆 2023-05-07

#️⃣ #RCE

🔹 Dependabot Confusion: Gaining Access to Private GitHub Repositories using Dependabot

📆 2023-05-06

#️⃣ #Dependency_confusion

🔹 CSS Injection via PostMessages to stealing Credit Card Info

📆 2023-05-05

#️⃣ #postMessage

🔹 Bullied by Bugcrowd over Kape CyberGhost disclosure

📆 2023-05-05

#️⃣ #Local_Privilege_Escalation

🔹 Cookie Bugs - Smuggling & Injection

📆 2023-05-05

#️⃣ #Cookie_smuggling

🔹 Privilege Escalations through Integrations

📆 2023-05-05

#️⃣ #postMessage

🔹 When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities

📆 2023-05-04

#️⃣ #SSRF

🔹 The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component

📆 2023-05-03

#️⃣ #Out_of_bounds_Read

🔹 AWS Identity Center (formerly known as AWS SSO): A Guide to Privilege Escalation and Identity and Access Management

📆 2023-05-01

#️⃣ #Privilege_escalation

🔹 TENDA–N301-v6–(CVE-2023–29680,CVE-2023–29681)

📆 2023-04-30

#️⃣ #Sensitive_Information_Sent_Over_an_Unencrypted_Channel

🔹 New high-severity vulnerability (CVE-2023-29552) discovered in the Service Location Protocol (SLP)

📆 2023-04-25

#️⃣ #DoS

🔹 How Material Security Uncovered a Vulnerability in the Gmail API

📆 2023-04-18

#️⃣ #Broken_Access_Control

🔹 From Django Debug Mode to PII Data Leak of more than 500+ Employees due Broken Access Control and IDOR

📆 2023-04-14

#️⃣ #Debug_mode_enabled

🔹 Bypassing OGNL sandboxes for fun and charities

📆 2023-01-27

#️⃣ #OGNL_injection

🔹 Azure Active Directory Flaw Allowed SAML Persistence

📆 2023-01-18

#️⃣ #Azure_AD