4 Google Cloud Shell bugs explained
https://offensi.com/2019/12/16/4-google-cloud-shell-bugs-explained-introduction/
https://offensi.com/2019/12/16/4-google-cloud-shell-bugs-explained-introduction/
Offensi
4 Google Cloud Shell bugs explained
Quick navigation Introduction (this page)Bug #1 – The Python language serverBug #2 – A custom Cloud Shell imageBug #3 – Git cloneBug #4 – Go and get pwned Note: The vulnerab…
Android Smartphone manufacturer #OnePlus launches an official 'Bug Bounty Program' with rewards up to $7000 for reporting security vulnerabilities.
security.oneplus.com/index.html
Special cases: up to $7,000
Critical: $750 - $1,500
High: $250 - $750
Medium: $100 - $250
Low: $50 - $100
security.oneplus.com/index.html
Special cases: up to $7,000
Critical: $750 - $1,500
High: $250 - $750
Medium: $100 - $250
Low: $50 - $100
How an incident gave us $$$ bounty.
https://medium.com/@vpawar1147/how-an-incident-gave-us-bounty-982b432be6f1
https://medium.com/@vpawar1147/how-an-incident-gave-us-bounty-982b432be6f1
Medium
How an incident gave us $$$ bounty.
By: Viren and Pritesh.
Cross-Site Scripting on a big bank’s Payment Gateway
https://medium.com/bugbountywriteup/cross-site-scripting-on-a-big-banks-payment-gateway-a986a2ba5d7
https://medium.com/bugbountywriteup/cross-site-scripting-on-a-big-banks-payment-gateway-a986a2ba5d7
PWNING AN OUTDATED KIBANA WITH NOT SO SAD VULNERABILITIES
https://www.synacktiv.com/posts/pentest/pwning-an-outdated-kibana-with-not-so-sad-vulnerabilities.html
https://www.synacktiv.com/posts/pentest/pwning-an-outdated-kibana-with-not-so-sad-vulnerabilities.html
Five easy steps to understand JSON Web Tokens (JWT)
https://medium.com/cyberverse/five-easy-steps-to-understand-json-web-tokens-jwt-7665d2ddf4d5
https://medium.com/cyberverse/five-easy-steps-to-understand-json-web-tokens-jwt-7665d2ddf4d5
Medium
Five easy steps to understand JSON Web Tokens (JWT)
JSON Web Token (JWT) Is a JSON object and it is considered one of the safest ways to transfer information between two participants. To…
Full Account Takeover (Android Application)
https://medium.com/@vbharad/full-account-takeover-android-application-78fa922f78c5
https://medium.com/@vbharad/full-account-takeover-android-application-78fa922f78c5
Medium
Full Account Takeover (Android Application)
Introduction :
Industrial Bug Bounty: Fantasy or Reality?
https://www.youtube.com/watch?v=oPQzfW6pMkk
https://www.youtube.com/watch?v=oPQzfW6pMkk
YouTube
Industrial Bug Bounty: Fantasy or Reality?
Vladimir Dashchenko, ICS CERT Vulnerability Research Group Manager, Kaspersky, sums up varying experience with bug bounty programs in ICS during his talk at Kaspersky Industrial Cybersecurity Conference 2019.
Watch the slides: https://ics.kaspersky.com/media/ics…
Watch the slides: https://ics.kaspersky.com/media/ics…
Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty
https://samcurry.net/filling-in-the-blanks-exploiting-null-byte-buffer-overflow-for-a-40000-bounty/
https://samcurry.net/filling-in-the-blanks-exploiting-null-byte-buffer-overflow-for-a-40000-bounty/
samcurry.net
Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty
I was in San Francisco the few days leading up to me finding this bug with some friends. We’d spent the day hacking before a few of us were traveling to Vegas for DEF CON the next day. Some of them were going on a road trip and I decided to join them at the…
Arbitrary File Download as Shopmanager
https://hackerone.com/reports/402473
https://hackerone.com/reports/402473
HackerOne
Automattic disclosed on HackerOne: Arbitrary File Download as...
Due to a flaw in the way WooCommerce handles downloadable products, a shop manager can download arbitrary files on the server.
The video shows the exploit and how simple it...
The video shows the exploit and how simple it...
Weaponizing BURP to work as an evil SSRF Confluence Server.
https://medium.com/@Master_SEC/weaponizing-burp-to-work-as-an-evil-ssrf-confluence-server-e077d71b4ef2
https://medium.com/@Master_SEC/weaponizing-burp-to-work-as-an-evil-ssrf-confluence-server-e077d71b4ef2
Medium
Weaponizing BURP to work as an evil SSRF Confluence Server.
I was doing bounty on a private H1 program that interacts with various external services one of them was Atlassian Confluence and Jira.
Android Root Detection Bypass Using Objection and Frida Scripts
https://medium.com/@GowthamR1/android-root-detection-bypass-using-objection-and-frida-scripts-d681d30659a7
https://medium.com/@GowthamR1/android-root-detection-bypass-using-objection-and-frida-scripts-d681d30659a7
Medium
Android Root Detection Bypass Using Objection and Frida Scripts
This article is a follow up to the previous article. If you guys haven’t checked it out, feel free to visit it.
Automate login csrf and know whether it is vulnerable by providing the needed POST parameters.
https://github.com/adwaithks/Login-CSRF-Automate
https://github.com/adwaithks/Login-CSRF-Automate
GitHub
GitHub - adwaithks/CSRF-Automate: POC script generator for CSRF
POC script generator for CSRF. Contribute to adwaithks/CSRF-Automate development by creating an account on GitHub.
Burp Beautifier - Beautifying JSON/JS/HTML/XML In Burp Suite
https://www.hahwul.com/2019/12/burp-beautifier.html
https://www.hahwul.com/2019/12/burp-beautifier.html