Hi guys. This is my first bug bounty writeup. I started to bug bounty on july 22, 2019. I want to share with community all the…

Happy New Year 2020!!!

Hey hunters! being a while of my last post! so let’s get deep on this right now!

Hello everyone, my name is Bernardo and I’m from Chile, this time I bring you a bug (IDOR) that I found in Yahoo that allows you to remove…

While intercepting requests using Burp Suite I noticed the following request:

This is Hakim Bencella (H4kst3r) , and im from ALGERIA.

Hi. I’m kedrisec and I want to describe 3 vulnerabilities that I found as part of the security research at Yahoo Bug Bounty program. So…

Sharing is Caring :) When we share, we open doors to a new beginning…../

Hi guys, I’m now at San Francisco and I’m very happy because I met with a lot of Hackers at HackerOne h1–415. I am very grateful to have…

Introduction

For the ones who do not have any information about this service and its API Key’s, Google Maps API is a paid service which allows…

Phishing Using Signup at Livestream API

This is a story of a typical xp_cmdshell giving a RCE which is blind due to some restrictions and how I bypassed those restrictions.

Hello Everyone ! Here’s is my write-up regarding a bug that you would have never heard before.

Especially when I talk with newbie security researchers/bug bounty hunters, they always make me feel as not thinking theirselves capable…

See posts, photos and more on Facebook.

I was searching for bug bounty programmes by using google dorks, when I came across one by a company, let’s say, Example Inc. They had a ,relatively, big scope and I thought I’d give that a try. After doing some recon and finding some interesting domains…