Potrebbero piacerti
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2023! portswigger.net/research/top-1…
Google(Chromium) suddenly decided to pay me for a UI Spoofing bug reported 3 years that had been idle, and from reward potential to no potential to potential. Ok thanks?
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2022! portswigger.net/research/top-1…
This #privacy audit looks like the first LeaveHomeSafe #pentest ever, way below commercial apps: Broken SSL validation, SD Card Leaks, 2FA Logic bypass, Screenshot leaks, several Face Recognition artifacts, etc. 7asecurity.com/blog/2022/07/l…
Serious vulnerabilities have been found in the Hong Kong government's LeaveHomeSafe COVID-19 app. @7aSecurity recently conducted a security audit that discovered numerous flaws that allow interception of the LeaveHomeSafe app and its backend servers. opentech.fund/news/7asecurit…
opentech.fund
7ASecurity, OTF Red Team Lab partner, completes Blackbox Pentest and Privacy Audit of LeaveHomeSafe...
Confirmed! Masato Kinugawa demonstrated a 3-bug chain of injection, misconfiguration and sandbox escape on Microsoft Teams to earn $150K and 15 Master of Pwn points.
New writing about the story of 3 bug bounty reports in which I chain low severity bugs together for higher impact and less known browser tricks. Includes CSS injection, Self-XSS, Drag-Drop XSS, Cookie Bomb, Login-Logout-CSRF, and more... medium.com/@renwa/the-und…
After 5 years of work, security.txt is officially an RFC. I am pleased to announce RFC 9116: rfc-editor.org/rfc/rfc9116. I would like to use this opportunity to thank those who made this possible. Thank you. ❤️
We found a way to spoof ENS domains and were awarded a $15k bug bounty by @ensdomains 👇Check out the write-up medium.com/@hacxyk/how-we…
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2021! portswigger.net/research/top-1…
New blog post: "What Bypassing Razer's DOM-based XSS Patch Can Teach Us" — edoverflow.com/2022/bypassing….
Also function solve(obj, property){ if(typeof obj != 'function') { obj(property).innerHTML = '<img src=1 onerror="alert(`You win`)">'; } else { alert('You must try harder than that.'); } }
I've been meaning to create a blog for some time now, and I finally did it! For its first post I wrote about a vulnerability that allowed an attacker to leak the full URL of cross-origin redirects on Google Chrome, check it out! blog.lbherrera.me/posts/appcache…
‘Soft skills are the most under-researched area of the bug bounty industry’ – ‘Reconless’ YouTubers (@0xReconless ) on filling a gap in infosec education portswigger.net/daily-swig/sof…
portswigger.net
Web Application Security, Testing, & Scanning - PortSwigger
PortSwigger offers tools for web application security, testing, & scanning. Choose from a range of security tools, & identify the very latest vulnerabilities.
New Video! Binary Exploitation 0x02 Why you should Close Your Files youtu.be/6SA6S9Ca5-U
The top 10 web hacking techniques of 2020, by @albinowax with help from @filedescriptor, @irsdl, @Agarri_FR and the entire community portswigger.net/research/top-1…
Untrusted Types just got a new UI with better filtering options and features thanks to @ThomasOrlita! Check it out! github.com/filedescriptor…
I have made a video to demonstrate how we can automate permission checks using my GitLab project "OpenAPI Security Scanner". Check it out! youtu.be/K65e5QRQ1tc Video editor: @wacms666
youtube.com
YouTube
Automating Permission Checks Using OpenAPI Security Scanner?
United States Tendenze
- 1. Cloudflare 28.4K posts
- 2. #heatedrivalry 29.1K posts
- 3. Cowboys 74K posts
- 4. LeBron 113K posts
- 5. Happy Farmers 1,606 posts
- 6. fnaf 2 27.6K posts
- 7. Pickens 14.9K posts
- 8. Lions 93K posts
- 9. Warner Bros 28.5K posts
- 10. Gibbs 20.8K posts
- 11. rUSD N/A
- 12. Paramount 21.6K posts
- 13. #PowerForce N/A
- 14. scott hunter 6,383 posts
- 15. Wizkid 176K posts
- 16. Shang Tsung 34.5K posts
- 17. Brandon Aubrey 7,499 posts
- 18. Davido 96.8K posts
- 19. Scott and Kip 3,671 posts
- 20. Eberflus 2,699 posts
Potrebbero piacerti
-
Frans Rosén
@fransrosen -
James Kettle
@albinowax -
publiclyDisclosed
@disclosedh1 -
Brett Buerhaus
@bbuerhaus -
Brute Logic
@BRuteLogic -
Gareth Heyes \u2028
@garethheyes -
Geekboy
@emgeekboy -
Th3g3nt3lman
@Th3G3nt3lman -
Orange Tsai 🍊
@orange_8361 -
Nicolas Grégoire
@Agarri_FR -
todayisnew
@codecancare -
Yassine Aboukir 🐐
@Yassineaboukir -
Joel Margolis (teknogeek)
@0xteknogeek -
Julien | MrTuxracer 🇪🇺
@MrTuxracer -
Tanner
@itscachemoney
Something went wrong.
Something went wrong.