Here are 10 tips from hakluke for crushing bug bounty in your first year. Watch the video here or read my notes here if you prefer. First, starting from nothing is hard. Even if you are coming from a security background, eg you were a pentester. Unlike in the video,...
Articles by Issue
Cross-site WebSocket hijacking
WebSockets are an asynchronous way of communication between the browser and the server. It's the perfect fit for any live functionalities like chats or live statistics. From my experience, developers are often unaware of the risks associated with using WebSockets....
All you need to know about reverse proxies
Almost all applications these days use some kind of reverse proxy. The more components, the more vulnerabilities and reverse proxies are not an exception. Whereas there are many benefits of using them, vulnerabilities like request smuggling, cache poisoning or...
How to do Code Review and where to find the code?
Shubs has a really good presentation on the OWASP DevSlop YouTube channel about reviewing the source code. Importantly, he also dedicated some time to tell us where to even find source code if we are auditing something that's not open source. As he says, often...
Finding companies’ AWS attack surface
Recon.cloud is a website that gathers information about AWS assets of many companies. They advertise having discovered over 330,000 of them. It might be a good way to find hidden subdomains that may be overlooked by other tools.
Finally, a useful DB with CVEs
I’m often very frustrated when looking for information about CVEs. Often, I find a useless description, along with a score of like 9/10 which sounds great but later turns out not so exploitable. AttackerKB is a Rapid7 project that gathers information about CVEs and...
Web3 learning corner #4
In the last two weeks, I didn’t do anything practical related to learning web3. It’s mostly due to me preparing a new BBRE Pemium website. But I watched two videos in this time. Advanced Smart Contract Hacking One was a presentation from RSA Conference 2019 about...
How to get better at hacking?
Louis Nyffenegger, the founder of PentesterLab, speaks about “How to get better at Hacking?” based on his experience of seeing a lot of people get into the industry or improve their skills. It’s especially for you if you hit a plateau and you’ve stayed at the same...
New XSS vectors
Recently, one of the XSS gurus - Gareth Heyes, found a few new XSS vectors. Many times I was annoyed when using the XSS cheat sheet. I was marking that I can only use a specific HTML tag, let’s say an “a” tag. The payload that I am supposed to use also uses the style...
How to start reviewing code?
This week, I took some notes from the “How to Analyze Code for Vulnerabilities?” talk by Vickie Li from the OWASP DevSlop channel. She shared some tips from a developer’s point of view on how to analyse code to find vulnerabilities. It’s mostly about manual source...