JEETPALHow I Discovered Account Takeover (ATO) via IDOR lead to 500$ bountyHello Everyone,2d agoA response icon5
InInfoSec Write-upsbyMonika sharmaSensitive Endpoint Wordlist for Bug HuntingUncover Hidden Flaws: A Powerful Wordlist for Bug Bounty SuccessSep 1A response icon2
InInfoSec Write-upsbyIbtissam hammadiHow I Hack Websites With Just HTML InjectionStep-by-Step Guide22h agoA response icon222h agoA response icon2
InInfoSec Write-upsbyArshad KazmiThe Cookie Bomb: My First $10K in Bug BountiesWhen I started bug bounty hunting in 2019–2020, I came across a vulnerability that was simple to exploit yet surprisingly widespread. I…Aug 31A response icon8Aug 31A response icon8
YusufHow I Found a High-Severity IDOR Without Using Any Proxy ToolsHello everyone, I’m Yusuf. Today, I will share how I found a high-severity IDOR using nothing more than my tablet pad without any proxy…1d agoA response icon11d agoA response icon1
JEETPALHow I Discovered Account Takeover (ATO) via IDOR lead to 500$ bountyHello Everyone,2d agoA response icon5
InInfoSec Write-upsbyMonika sharmaSensitive Endpoint Wordlist for Bug HuntingUncover Hidden Flaws: A Powerful Wordlist for Bug Bounty SuccessSep 1A response icon2
InInfoSec Write-upsbyIbtissam hammadiHow I Hack Websites With Just HTML InjectionStep-by-Step Guide22h agoA response icon2
InInfoSec Write-upsbyArshad KazmiThe Cookie Bomb: My First $10K in Bug BountiesWhen I started bug bounty hunting in 2019–2020, I came across a vulnerability that was simple to exploit yet surprisingly widespread. I…Aug 31A response icon8
YusufHow I Found a High-Severity IDOR Without Using Any Proxy ToolsHello everyone, I’m Yusuf. Today, I will share how I found a high-severity IDOR using nothing more than my tablet pad without any proxy…1d agoA response icon1
Mo SalahA Critical Zero-Day in Atlassian Jira Service Management Cloud: Password Reset Account Takeover0-Day ATO By Reset PasswordSep 1A response icon16
Krishna KumarReflected XSS Vulnerability Bypassing Amazon CloudFront via Safari BrowserIntroduction3h ago
Imran HossainHow I Found a Critical Password Reset Bug in the BB program(and Got $4,000)As a bug bounty hunter, I often test mobile apps by routing traffic through Burp Suite to see how the backend APIs behave. One of my recent…Aug 26A response icon11