A list of resources for those interested in getting started in bug bounties - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it. - vaib25vicky/a...

In this post, I’m going to reveal the fastest, easiest P1 that I’ve ever reported – multiple times! It’s the sort of oversight that seems so simple to avoid, but surprisingl…

We demonstrate how one can recover mt_rand()'s seed with only two outputs and without any bruteforce.

We found malicious apps that work together to compromise devices and collect user data. One of the apps, called Camero, exploits CVE-2019-2215, a flaw that exists in Binder. This is the first instance in the wild that exploits said UAF vulnerability.

The following post is a reproduction of a paper of mine which was included in the In Depth Security Vol. III book which is compiled by the…

Alternative ways to retrieve table names in MySQL — without information_schema.

Below are some simple methods for exiting vim. Contribute to hakluke/how-to-exit-vim development by creating an account on GitHub.

And Credit Card Number Too

Before I began to comprehend the complex science of information security, it seemed to me that Two-Factor Authentication is a guaranteed…

Recently I solved a CTF style challenge where the user was given an .apk file with the goal to find the flag. It turned out that it was a…

Malware research developed at Spark 1 Cybersecurity Solutions.

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ] - projectzeroindia/CVE-2019-19781

Hey hunters! being a while of my last post! so let’s get deep on this right now!

Reverse engineering focusing on x64 Windows. Contribute to 0xZ0F/Z0FCourse_ReverseEngineering development by creating an account on GitHub.

The Spring Boot framework is one of the most popular Java-based microservice frameworks that helps developers quickly and easily deploy Java applications. With its focus on developer-friendly tools and configurations, Spring Boot accelerates the development…

lateral movement techniques that can be used during red team exercises - Mr-Un1k0d3r/PoisonHandler

I just want to write a check list for myself. This article includes various vulnerability discovery method bypass methods. I hope you can…