| Gain write permission of repositories with a bug in GitHub Actions |
|
|
|
| I felt like there were no more bugs left after winning € 2000 … But an email worth €750 changed my mind |
|
|
|
| How I was able to see likes and dislikes count even though is hidden by victim | YouTube #1 |
|
|
|
| How I was able to see likes and dislikes count even though is hidden by victim | YouTube #2 |
|
|
|
| Messing with GitHub's fork collaboration for fun and profit |
|
|
|
| Privilege Escalation: From being a normal user to admin |
|
|
|
| JavaScript analysis leading to Admin portal access |
|
|
|
| Optimizing Hunting Results in VDP for use in Bug Bounty Programs - From Sensitive Information Disclosure to Accessing Hidden APIs which can be used to Retrieve Customer Data |
|
|
|
| 300$ P3 Easy Bug in 30 Seconds |
|
|
|
| Hinge Hackerone Writeup |
|
|
|
| Easy bounties with subdomain discovery - Using Project Sonar for bug bounty |
|
|
|
| How I get my first SWAG from SIDN (Sensitive Data Expose) |
|
|
|
| Multiple security vulnerabilities in domains belonging to Google |
|
|
|
| Broken Access Control in bingmapsportal !!! |
|
|
|
| Hacking Facebook Pages |
|
|
|
writeups.xyz
/
Broken Access Control