HackerOne
@HackerOne
11K
subscribers
644
photos
31
videos
79
files
2.74K
links
Community :
@Sec0x01
@Bug0x
Download Telegram
Join
HackerOne
11K subscribers
HackerOne
Core Impact 19.1 with unlimited license with April updates. Bonus 3rd party Core tools. 5000$
@neoleadS
HackerOne
HackerOne
https://ctftime.org/event/1058
ctftime.org
UUTCTF 2020
UUTCTF is a student CTF organized by Urmia University of Technology. It is the CTF contest of P0SCon Cyber-Security C...
HackerOne
https://medium.com/@social_62682/from-fuzzing-to-remote-code-execution-in-samsung-android-56cbdebcfeca
HackerOne
https://gitlab.com/gitlab-com/gl-security/gl-redteam/red-team-tech-notes/-/tree/master/RT-011%20-%20Phishing%20Campaign
GitLab
RT-011 - Phishing Campaign · master · GitLab.com / GitLab Security Division / Security Operations Department / Red Team / Red Team…
As we come across interesting things that we want to share with the community we will document them here as a tech note.
HackerOne
github.com/redballoonshenanigans/monitordarkly
GitHub
GitHub - RedBalloonShenanigans/MonitorDarkly: Poc, Presentation of Monitor OSD Exploitation, and shenanigans of high quality.
Poc, Presentation of Monitor OSD Exploitation, and shenanigans of high quality. - RedBalloonShenanigans/MonitorDarkly
HackerOne
https://cube01.io/blog/Moodle-DOM-Stored-XSS-to-RCE.html
HackerOne
https://www.blackhat.com/docs/eu-16/materials/eu-16-Jurczyk-Effective-File-Format-Fuzzing-Thoughts-Techniques-And-Results.pdf
HackerOne
https://uae-i.blogspot.com/2020/06/xssopen-redirect-in-paypal.html
Blogspot
XSS+Open Redirect in PAYPAL
Hi everyone, I will tell bug I found. This bug is out of scope. I think that this bug may give you idea. Then, I decided to tell.
HackerOne
#Tips
HackerOne
https://medium.com/@sansatart/malware-traffic-analysis-25f4674ddc03
Medium
Malware Traffic Analysis
I’ve been meaning to get around to doing one of these in a public blog for a bit, so I figured I would pick one of the more involved…
HackerOne
Forwarded from
Valeriy Shevchenko
https://medium.com/@valeriyshevchenko/from-crlf-to-account-takeover-a94d7aa0d74e?sk=54abf996cacadfe53113700a03181bb8
Medium
From CRLF to Account Takeover
At the beginning of March,while researching one site I discovered the new functionality. The functionality allowed the user to login via…
HackerOne
Forwarded from
Bug Bounty
(
Amir Kiani
)
https://medium.com/@imayankraheja/tampering-encrypted-parameter-to-account-takeover-a5fec7dde360
Medium
Tampering Encrypted Parameter to Account Takeover
Hola Infosec! Thanks for showing so much love to my previous story. Just like my last writup, today also I am going to share an…
HackerOne
callstranger.com
HackerOne
https://securitylab.github.com/research/apache-struts-CVE-2018-11776
GitHub Security Lab
CVE-2018-11776: How to find 5 RCEs in Apache Struts with CodeQL
Semmle security researcher Man Yue Mo explains how he used CodeQL’s Data Flow library to discover multiple RCE vulnerabilities (CVE-2018-11776) in Apache Struts.
HackerOne
https://medium.com/@muztahidultanim/how-i-was-able-to-buy-t-shirt-for-1-payment-price-manipulation-36b4d6a30034
Medium
How I was able to buy t-shirt for €1 — Payment Price Manipulation
Today I am gonna share a simple but critical vulnerability with you guys. This vulnerability called payment price manipulation, by using…
HackerOne
https://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-part-ii-unauthenticated-memory-read-preparing-the-ground-for-an-rce/
Jamf
Jamf Threat Labs | Blog
TWeb.init({scrollToPost:'HackerOne/2664'});
