There’s quite a good report on Hackerone about account takeover in Flickr. But was there actually an account takeover? The triager kept insisting that the attacker logs to their own account thus it’s not a risk. The hunter claimed that he can log in to the victim’s...
Articles by Issue
Interesting bugs in Hubspot and Instapage
I’m a simple man - I see Sam Curry publishing writeup, I read the writeup. This time it’s a short one about a couple of interesting bugs found in Hubspot and Instapage. It’s definitely worth reading because there are tricks that can be used in many different contexts....
Installing Burp Collaborator instance
Burp Collaborator is an awesome tool and I probably don’t need to tell you that. However, there are a few problems with using the Portswigger’s server: Disclosing sensitive information to 3rd party company. Depending on what you hack, it may or may not be a problem....
Recon roadmap of an experienced hunter
Ahmad Halabi shared his process of discovering new targets. Starting from the beginning, through subdomain enumeration, port scanning and directory brute-force, up to analysing JS files. Unfortunately, he didn’t share what tools does he use but when you know what you...
Web Cache Poisoning – part 1 – basics
I feel like I see quite a few web cache poisoning writeups recently. That’s why I will tell you about it today and in the next issue, I will show you those recent writeups and examples. Enjoy! For clarity - there are a few kinds of caches - web cache, DNS cache,...
Strategy to become a pentester
On PentesterLab’s blog, there’s a great article that will help you order some things in your mind if you want to land your first job in our fantastic industry. You probably noticed already how many different areas there are inside cybersecurity. Which of them you...
Finding postMessage bugs with DOM invader
As promised in the last issue, here’s the tutorial of using DOM invader for tracking and fiddling with postMessages. This tool is really awesome and it does make finding this type of bugs absurdly easy. postMessage 101 Let’s start with the explanation of what...
Break into smart contract hacking
I don’t know how about you but when I see bounties of $100k, $500k or a million bucks, I can’t counteract thinking about learning smart contract hacking. However, now is not the time for me - I want to stabilise a bit with the web stuff before jumping to something...
Cloud Security Breaches and Vulnerabilities: 2021 in Review
Cloud is a constantly evolving topic and demand for security grows along with it. If you want to know what was happening in this field in 2021, check out this article by christophetd . You can read about last year’s trends, biggest fuckups and importantly, preventing...
Community vote launched for Top 10 web hacking techniques of 2021
The community vote is live for the top 10 web hacking techniques 2021! There are tons of mind-blowing writeups there. Some of them, of course, were covered here or on my YouTube. Out of those nominated bugs, we - the community - now choose the top 15 out of which the...