You suffer from Firefox telemetry requests in Burp, don't you? Here is the solution — use this config file for Firefox: gist.github.com/AetherEternity… It disables most of telemetry features. Trick by @AetherEternity #BugBountyTip

byt3bl33d3r, /dev/random > blog.py

TL;DR Find out how we managed to execute arbitrary commands on MyLittleAdmin management tool using unauthenticated RCE vulnerability.  Vulnerability Summary MyLittleAdmin is a web-based management tool specially designed for MS SQL Server. It fully works…

Website of Ezequiel Pereira, Uruguayan security enthusiast and student.

Website of Ezequiel Pereira, Uruguayan security enthusiast and student.

***************************************************************.

Hello Everyone, as we know Information gathering or sometimes also known as Reconnaissance or simply recon is the first and foremost step…

The Question All ask is How to start as a Bug Hunter ? and the following links are tell you how :) BUG BOUNTY How to start  BUG BOUNTY…

A container repository for my public web hacks! Contribute to 0xSobky/HackVault development by creating an account on GitHub.

Assalam-O-Alaikum fellas hope you all are fine, it has been a while I've not contributed to the community so, today I will share chained…

Just learned today that you can actually end a SQL query with "\G" as in e.g. "SELECT * FROM yourAwesomeTable \G" 🤯 Try it out and don't be shocked by what you will find 🧐😅 #sql #magic

Intro to PHP object injection vulnerabilities

Vendor’s Vulnerability Announcement CVE-2019-13358 Internet Facing OpenCats: Google Dork OpenCats is an open-sourced applicant tracking system that is used to track job applicants. Versions before 0.9.4-3 suffer from a XML External Entity Injection vulnerability…

SANS Penetration Testing blog pertaining to Exploiting XXE Vulnerabilities in IIS/.NET