Security Articles & Resources

Discover the latest cybersecurity articles, tutorials, and resources from around the web.

Popular Tags

Bug Bounty Hacking Cybersecurity Bug Bounty Tips Pentesting Hackerone Ssrf Bug Bounty Writeup Bugbounty Writeup Infosec

Showing 8 of 28 articles

Account verification code bypass lead to a $4000 bounty

Account verification code bypass lead to a $4000 bounty

Hello reader,

Mohsin khan
May 26, 2025 1 min read
Bugbounting Bugbounty Writeup Bugbounty Poc +2
Bypassing Filters: SSRF Exploitation via DNS Rebinding with Just 1 in 30 Successful Requests

Bypassing Filters: SSRF Exploitation via DNS Rebinding with Just 1 in 30 Successful Requests

Hey everyone, hope you’re all doing well! I wanted to share a cool bug story I came across a few months ago. It’s about an SSRF…

Mohsin khan
May 26, 2025 1 min read
Bug Bounty Bugs Ssrf +2
How I Made $9,000 in One Month from Bug Bounty

How I Made $9,000 in One Month from Bug Bounty

A deep dive into my methodical approach, unique tricks, and how I exploited a misimplementation of PayU on a target website for a big reward

Milad Safdari (Eulex)
May 26, 2025 1 min read
Bug Bounty Bug Bounty Tips Vulnerability +2
How I Found a Critical Vulnerability and Earned $4,000 in Bug Bounty Hunting

How I Found a Critical Vulnerability and Earned $4,000 in Bug Bounty Hunting

How I Found a Critical Vulnerability and Earned $4,000 in Bug Bounty Hunting

zack0x01
May 26, 2025 1 min read
Bug Bounty Idor Cyber Security +1
Retro2 — VulnLab Writeup

Retro2 — VulnLab Writeup

Retro2 was an easy-rated Windows Active Directory machine on VulnLab. It involved cracking the password for an encrypted .accdb file…

iamroot101
May 26, 2025 1 min read
Retro2 Vulnlab Pre Windows 2000 Genericwrite Abuse +2
Breaking the Competition (Bug Bounty Write-up)

Breaking the Competition (Bug Bounty Write-up)

In this post, I’ll be describing how I found 5 bugs on a private HackerOne program. The website that I attacked was a new CTF hosting…

George O
May 26, 2025 1 min read
George Omnet Bug Bounty Hackerone +2
Bypassing SSL Validation in a Java Application via Truststore
Featured

Bypassing SSL Validation in a Java Application via Truststore

This article details bypassing SSL validation in the Java-based CTF thick client app “Cosmic Snap Java Edition” using Burp Suite to…

Sandeep Wawdane
May 26, 2025 1 min read
Thick Client Security Java Truststore +1
A Fun Guide to Cracking Server-Side Template Injection (SSTI) in Flask

A Fun Guide to Cracking Server-Side Template Injection (SSTI) in Flask

Chaining the ssti to rce in flask based web application where jinja2 template engine being used.

Sid
May 26, 2025 1 min read
Medium
Showing page 3 of 3 (28 total articles)