infosecau
- Karma
- 0
- Created
- ()
- Submissions
- 0
- The down fall of bug bounties (shubs.io)
- So, you want to get into bug bounties? (shubs.io)
- Exploiting Static Site Generators: When Static Is Not Static (blog.assetnote.io)
- Abusing functionality to exploit a super SSRF in Jira Server (CVE-2022-26135) (blog.assetnote.io)
- Cloudflare Pages, part 1: The fellowship of the secret (blog.assetnote.io)
- Hacking a Bank by Finding a 0day in DotCMS (blog.assetnote.io)
- Eliminating Dangling Elastic IP Takeovers with Ghostbuster (blog.assetnote.io)
- Turning Bad SSRF to Good SSRF: Websphere Portal (blog.assetnote.io)
- Exploiting GraphQL (blog.assetnote.io)
- Taking over Uber accounts through voicemail (blog.assetnote.io)
- Hacking IIS (drive.google.com)
- Attack of the clones: Git clients remote code execution (blog.blazeinfosec.com)
- Finding Hidden Files and Folders on IIS Using BigQuery (blog.assetnote.io)
- Hacking on Bug Bounties for Four Years (blog.assetnote.io)
- Taking over Azure DevOps accounts with one click (blog.assetnote.io)
- Expanding the Attack Surface: React Native Android Applications (blog.assetnote.io)
- Gaining access to Uber's user data through AMPScript evaluation (blog.assetnote.io)
- Leveraging web application vulnerabilities to steal NTLM hashes (wildfire.blazeinfosec.com)
- Commonspeak: Content discovery wordlists built with BigQuery (pentester.io)
- Breach Detection at Scale with PROJECT SPACECRAB (developer.atlassian.com)
- Exploiting Dolphin – Part 1 (dougallj.wordpress.com)
- Taking Over DigitalOcean Domains via a Lax Domain Import System (thehackerblog.com)