Asyary Raihan$600 Vulnerability: My First Bug Hunting JourneyA year ago, I earned my first paid bug bounty—here's my story that I hope could inspire you.Jan 234Jan 234
Anmol K SachanUnlock Hidden Backups with wayBackupFinder.pyAs security researchers, penetration testers, and bug bounty hunters, we often uncover vulnerabilities and recover valuable resources from…Jan 201Jan 201
Anmol K SachanUnlock Hidden Backups with wayBackupFinder.pyAs security researchers, penetration testers, and bug bounty hunters, we often uncover vulnerabilities and recover valuable resources from…Jan 201Jan 201
Jerry Shah (Jerry)Clear Text Transmission Of Sensitive Data - Everything Is VisibleSummary :May 17, 2020May 17, 2020
InInfoSec Write-upsbyShubham Bhamare[WRITE-UP] Bypassing 2-Factor Authentication for Facebook Business Manager (Bounty: 1000 USD)Hi guys, it’s Shubham Bhamare again. In this write-up, I’m going to tell you how I bypassed 2-Factor Authentication for Facebook Business…Aug 31, 2021Aug 31, 2021
HX007A Journey of Limited Path Traversal To RCE With $40,000 Bounty!#Introduce Myself:Jan 1649Jan 1649
HX007A Journey of Limited Path Traversal To RCE With $40,000 Bounty!#Introduce Myself:Jan 1649Jan 1649
Raman MohurleRevealing Secrets: Uncovering Vulnerabilities with NTLM AuthenticationIntroductionSep 25, 20231Sep 25, 20231
Sharat KaikolamthuruthilCritical Account Takeover (MFA + Auth Bypass) due to Cookie MisconfigurationHello Folks,Dec 1, 20242Dec 1, 20242
Sharat KaikolamthuruthilCritical Authentication Bypass & Account Takeover via Attacker’s MFA CodeHello Folks,Dec 8, 2024Dec 8, 2024
oXnoOneXoA story of a nice SSRF vulnerability.Hello friend, I’ll talk about a SSRF vulnerability i got with my friend Ahmed Elmorsi in a private bug bounty program. I’ll have a quick…Jul 3, 20243Jul 3, 20243
Sreedeep cvTop 5 Ways to Hack APIs and find good bugsAPI hacking is one of the most rewarding niches in hacking. Let me enlighten you with the best practices for bug bounty or any hacking…Dec 17, 2024Dec 17, 2024
oXnoOneXoSimple ATO in private program.Hello Friend. I’m gonna talk about a simple Account Takeover vulnerability I found in a private program at Bugcrowd so grab your coffee and…Dec 20, 20244Dec 20, 20244
Sijo JohnsonFlirting with Parameters: My First Bug Bounty 🥵How I Got My First Bounty 💸Dec 18, 20243Dec 18, 20243
Rikesh BaniyaAccount Takeover using SSO LoginsCompanies often provide various login methods for users to authenticate their accounts.Dec 12, 20249Dec 12, 20249
InOSINT TeambySri Shavin KumarP3 (Medium) : How I Gain Access To NASA's Internal Workspace?!Sep 3, 20243Sep 3, 20243
InOSINT TeambySri Shavin KumarP3 (Medium) : How I Gain Access To NASA's Internal Workspace?!Sep 3, 20243Sep 3, 20243
InCyber Security Write-upsbyAbhirupKonwar$400 Bounty in 10 sec 🤑One custom dork, system pwned!Dec 8, 20248Dec 8, 20248
Rishav anandLearn Cloud Pentesting (Roadmap) and earn in $100,000—$150,000Cloud Penetration Testing (or Cloud Pentesting) involves testing the security of cloud environments, infrastructure, applications, and…Oct 25, 20247Oct 25, 20247
![[WRITE-UP] Bypassing 2-Factor Authentication for Facebook Business Manager (Bounty: 1000 USD)](https://miro.medium.com/v2/resize:fill:160:106/1*k3wDNHVHKIz5vGRJgvnEfA.jpeg)
![[WRITE-UP] Bypassing 2-Factor Authentication for Facebook Business Manager (Bounty: 1000 USD)](https://miro.medium.com/v2/resize:fill:320:214/1*k3wDNHVHKIz5vGRJgvnEfA.jpeg)
