First of all this is my biggest hack I did in my life.The website I found few day ago while I am looking for bus ticket.After booking Bus…

White Hat Hacking: https://goo.gl/XNEni8

In this White Hat Hacking second video tutorial, I show you how we can find CRLF Injection vulnerabilities using Burb Suite. Specifically, we look at Shopify.com and how we can manipulate a value which is subsequently…

Web Hacking 101: https://leanpub.com/web-hacking-101

In the 17th Web Hacking Pro Tips, I sit down to talk about hacking with @dawgyg, Tommy DeVoss. We discuss:

- How he got started hacking
- His first vulnerabilities
- His time as a black hat and being…

So you can only inject SQL if application is not filtering quotes? I’m not talking about injections like id=1 where you can simply start to inject statements! I’m talking about a simple trick that allows a tester or attacker to break out from a string value…

For the near future I will only be releasing new blogs on this site myexploit will continue but please vist 1337red for SE, Redteaming and advanced pentesting techniques. myexploit vids Any questio…

Introduction :

by @s3c

And Credit Card Number Too

This is my second blog about #bugbounty.You can check out my first blog that is full of resources and content for bug bounty hunters. If…

Alternative ways to retrieve table names in MySQL — without information_schema.

Your guide to hacking and earning on bug bounty programs

Especially when I talk with newbie security researchers/bug bounty hunters, they always make me feel as not thinking theirselves capable…

Introduction :

As bad actors seek ever-more lucrative ways to enhance their Distributed Denial of Service (DDoS) attacks, analysts are noticing a sustained effort from the black hat community to amplify their firepower.