Impact Pi-hole is affected by a Remote Code Execution vulnerability. An authenticated user of the Web portal can execute arbitrary command with the underlying server with the privileges of the loca…

XSS Game: Learn Cross Site Scripting (XSS) by completing challenges!

Your guide to abusing 'language barriers' between web components.

Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.

​Docker is a tool designed to make it easier to create, deploy, and run applications by using containers. Containers allow a developer to package an application with all of the parts it needs, such...

Messed around a bit more since I needed to load in a script for CSP bypass as well and somehow this bypasses Akamai <SCr%00Ipt>confirm`1`</scR%00ipt> (can load scripts with src as well) 🤔 #bugbountytips #bugbountytip

Hey guys so this blog post is about RCE issue reported to Microsoft bug bounty program, Remote Code execution issue existed in microsoft.com subdomain running Apache Solr.

Just another DFIR Blog

A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities - preempt/ntlm-scanner

Vishnu Prasad P G

Redis - Replication Code Execution (Metasploit).. remote exploit for Linux platform

Careful clicking on links starting with \\ in Zoom.

Summary :

Find leaked secrets via github search. Contribute to techgaun/github-dorks development by creating an account on GitHub.

In this video Ron Chan describes his process for finding critical flaws on GitLab's bug bounty program.

GitLab's bug bounty program: https://hackerone.com/gitlab
GitLab issue tracker: https://gitlab.com/gitlab-org/gitlab/issues?scope=all&utf8=%E2%9C%93&…

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe... - hisxo...