你可能會喜歡
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2023! portswigger.net/research/top-1…
Google(Chromium) suddenly decided to pay me for a UI Spoofing bug reported 3 years that had been idle, and from reward potential to no potential to potential. Ok thanks?
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2022! portswigger.net/research/top-1…
This #privacy audit looks like the first LeaveHomeSafe #pentest ever, way below commercial apps: Broken SSL validation, SD Card Leaks, 2FA Logic bypass, Screenshot leaks, several Face Recognition artifacts, etc. 7asecurity.com/blog/2022/07/l…
Serious vulnerabilities have been found in the Hong Kong government's LeaveHomeSafe COVID-19 app. @7aSecurity recently conducted a security audit that discovered numerous flaws that allow interception of the LeaveHomeSafe app and its backend servers. opentech.fund/news/7asecurit…
Confirmed! Masato Kinugawa demonstrated a 3-bug chain of injection, misconfiguration and sandbox escape on Microsoft Teams to earn $150K and 15 Master of Pwn points.
New writing about the story of 3 bug bounty reports in which I chain low severity bugs together for higher impact and less known browser tricks. Includes CSS injection, Self-XSS, Drag-Drop XSS, Cookie Bomb, Login-Logout-CSRF, and more... medium.com/@renwa/the-und…
After 5 years of work, security.txt is officially an RFC. I am pleased to announce RFC 9116: rfc-editor.org/rfc/rfc9116. I would like to use this opportunity to thank those who made this possible. Thank you. ❤️
We found a way to spoof ENS domains and were awarded a $15k bug bounty by @ensdomains 👇Check out the write-up medium.com/@hacxyk/how-we…
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2021! portswigger.net/research/top-1…
New blog post: "What Bypassing Razer's DOM-based XSS Patch Can Teach Us" — edoverflow.com/2022/bypassing….
Also function solve(obj, property){ if(typeof obj != 'function') { obj(property).innerHTML = '<img src=1 onerror="alert(`You win`)">'; } else { alert('You must try harder than that.'); } }
I've been meaning to create a blog for some time now, and I finally did it! For its first post I wrote about a vulnerability that allowed an attacker to leak the full URL of cross-origin redirects on Google Chrome, check it out! blog.lbherrera.me/posts/appcache…
‘Soft skills are the most under-researched area of the bug bounty industry’ – ‘Reconless’ YouTubers (@0xReconless ) on filling a gap in infosec education portswigger.net/daily-swig/sof…
The top 10 web hacking techniques of 2020, by @albinowax with help from @filedescriptor, @irsdl, @Agarri_FR and the entire community portswigger.net/research/top-1…
Untrusted Types just got a new UI with better filtering options and features thanks to @ThomasOrlita! Check it out! github.com/filedescriptor…
I have made a video to demonstrate how we can automate permission checks using my GitLab project "OpenAPI Security Scanner". Check it out! youtu.be/K65e5QRQ1tc Video editor: @wacms666
youtube.com
YouTube
Automating Permission Checks Using OpenAPI Security Scanner?
United States 趨勢
- 1. Knesset 53.5K posts
- 2. Good Monday 27.9K posts
- 3. #MondayMotivation 9,467 posts
- 4. Columbus 44.2K posts
- 5. #GalxeID 8,024 posts
- 6. #njkopw 30.2K posts
- 7. #LingOrmTop1and2EMVDiorSS26 79K posts
- 8. CONGRATS LINGORM PFW EMV 71.8K posts
- 9. StandX 2,175 posts
- 10. Cryptocurrencies 4,215 posts
- 11. All 20 63.5K posts
- 12. Branch 41.8K posts
- 13. #IndigenousPeoplesDay 1,157 posts
- 14. Israeli Parliament 5,463 posts
- 15. Rod Wave 2,104 posts
- 16. Red Cross 66.9K posts
- 17. Chiefs 117K posts
- 18. God Bless President Trump 16.9K posts
- 19. Eitan Mor 25.2K posts
- 20. Tel Aviv 71.7K posts
你可能會喜歡
-
Frans Rosén
@fransrosen -
James Kettle
@albinowax -
publiclyDisclosed
@disclosedh1 -
Brett Buerhaus
@bbuerhaus -
Brute Logic
@BRuteLogic -
Gareth Heyes \u2028
@garethheyes -
Geekboy
@emgeekboy -
Th3g3nt3lman
@Th3G3nt3lman -
Orange Tsai 🍊
@orange_8361 -
Nicolas Grégoire
@Agarri_FR -
todayisnew
@codecancare -
Yassine Aboukir 🐐
@Yassineaboukir -
Joel Margolis (teknogeek)
@0xteknogeek -
Julien | MrTuxracer 🇪🇺
@MrTuxracer -
Tanner
@itscachemoney
Something went wrong.
Something went wrong.