Self-XSS to ATO via Site Features
Escalate Self-XSS to account takeover through Quick Login feature
Sep 8, 20246 min read5.6K
Command Palette
Search for a command to run...
#bugbounty
Articles tagged with #bugbounty
Certificate Search via DumpCrt (crt.sh) for Wide Recon
Hi Guys,DumpCrt is a Bash script designed to extract data from the crt.sh database. It provides an easy way to search for certificates based on various criteria such as target, organization name, and more. It has two modes, one for big companies, and...
Dec 20, 20231 min read738
How I discovered a web cache deception in Voorivex event
Today, I want to show you how I discovered a web cache deception during a local event as a new hunter. Let's get started. Cache As you know we have several caches in web applications, Browser Cache Server Cache ( CDN /Load Balance/Reverse Proxy) ...
Apr 22, 20233 min read600