Article of the weekįinding Gadgets Like It’s 2022 & shares a new methodology to find deserialization gadget chains in Java apps using CodeQL. The livestream is up on Youtube and is a fantastic opportunity to learn about topics like how to find your first bug, 2FA vulnerabilities, creating bug bounty tools, mobile app hacking, OSINT in bug bounty, a cool red teaming story and more. To go further, here are other resources recommended by conference worth your time is Intigriti’s 1337UP LIVE Conference. The first talk is a walkthrough of Amazon Cognito misconfigurations by She goes over how AWS Cognito works and common attack vectors. Conferences of the weekĪmazon Cognito (Mis)Configurations – BSides Ahmedabad 2021 If you’ve completed all Web Security Academy challenges and wondered what’s next, you will love this! PortSwigger introduced a new functionality, the “Mystery lab challenge”, that can generates realistic labs where the bug type is not known beforehand. PortSwigger: Introducing the mystery lab challenge All because of a small change in an API endpoint related to idempotency… 2. What caused the Uber Eats glitch that allowed ordering free food for a weekend in explains a bug in Uber Eats that allowed students in India to order around $14,000 of food for free. ![]() It is a place where you can share with us your bug bounty writeups, and stay informed of the latest and most informative writeups. This issue covers the week from March 7 to 14.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |