Hello Readers,Hope you are doing well.

Hi Hunters!! Hope you all are good and hunting well. In this write up you will see how I configured my terminal for AWS testing. If you…

Getting Started with IDOR, What is IDOR?

A ridiculous collection of web development cheatsheets

The security flaws were identified by a cybersecurity firm Check Point, which the company claims to have fixed

Hi guys. This is my first bug bounty writeup. I started to bug bounty on july 22, 2019. I want to share with community all the…

Happy New Year 2020!!!

Hey hunters! being a while of my last post! so let’s get deep on this right now!

Hello everyone, my name is Bernardo and I’m from Chile, this time I bring you a bug (IDOR) that I found in Yahoo that allows you to remove…

While intercepting requests using Burp Suite I noticed the following request:

This is Hakim Bencella (H4kst3r) , and im from ALGERIA.

Hi. I’m kedrisec and I want to describe 3 vulnerabilities that I found as part of the security research at Yahoo Bug Bounty program. So…

Sharing is Caring :) When we share, we open doors to a new beginning…../

Hi guys, I’m now at San Francisco and I’m very happy because I met with a lot of Hackers at HackerOne h1–415. I am very grateful to have…

Introduction

For the ones who do not have any information about this service and its API Key’s, Google Maps API is a paid service which allows…

Phishing Using Signup at Livestream API

This is a story of a typical xp_cmdshell giving a RCE which is blind due to some restrictions and how I bypassed those restrictions.