43961
Happy hunting! thebugbountyhunter.com hello@thebugbountyhunter.com
Burp Suite Enterprise Edition spring update 2024
https://portswigger.net/blog/burp-suite-enterprise-edition-spring-update-2024
How do we solve the LEADERBOARD PROBLEM in bug bounties!?
https://www.youtube.com/watch?v=apaZYLiQpkQ
How I Hacked One of These Big Companies (JS files analysis)
https://l0da.medium.com/how-i-hacked-one-of-these-big-companies-js-files-analysis-7cf47372b642
I/O 2024: What’s new in Android security and privacy
http://security.googleblog.com/2024/05/io-2024-whats-new-in-android-security.html
Desktop Application Penetration Testing (1)
https://0x34ziz.github.io/DesktopPentest1.html
Your Mental Health Matters
https://www.youtube.com/watch?v=-ljLIf-Pxl0
What is attack surface management?
https://blog.projectdiscovery.io/what-is-attack-surface-management/
Exploit Archeology - Exploiting an old unknown Server Side Browser
https://blog.ajxchapman.com/posts/2024/05/08/exploit-archeology.html
Performing CSRF Exploits Over GraphQL
https://www.youtube.com/watch?v=Nxvxgl0oRBI
Google and Apple deliver support for unwanted tracking alerts in Android and iOS
http://security.googleblog.com/2024/05/google-and-apple-deliver-support-for.html
THE POWER OF RECON by Orwa Atyat
https://www.youtube.com/watch?v=yyD8Z5Qar5I
Code Reviews, Small Moments, Big Impacts
https://www.hackerone.com/engineering/code-review-impact
How I Found A Full Read SSRF Leaking AWS EC2 Credentials Using Dorki.io
https://t.co/rdRPFneR64
Decoding Pike Finance Exploit | QuillAudits
https://quillaudits.medium.com/decoding-pike-finance-exploit-quillaudits-40a1662d3f8a
Hardly Strictly Security: An Event Recap
https://blog.projectdiscovery.io/hardly-strictly-security-an-event-recap/
Human-Powered Security: The Value of Ethical Hackers & Bug Bounty
https://www.hackerone.com/vulnerability-management/human-powered-security
GitHub - usdAG/cstc: CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
https://github.com/usdAG/cstc
Discover RedRays a cutting-edge cybersecurity company based in the US, leading the way in SAP vulnerability research. With a track record of over 100 discoveries, they've developed an advanced SAP Certified Security Scanner capable of swiftly detecting 4100+ vulnerabilities, including zero and one-day threats, in just 1 minute!
Their platform is a game-changer for bug bounty hunters, SAP Security Consultants, and enterprises seeking top-tier protection.
Secure your company with RedRays today! 🛡️
Watch their platform in action: RedRays Platform Demo.
Optimizing XSS Vulnerability Detection
https://bountysecurity.ai/blogs/news/optimizing-xss-vulnerability-detection
OAuth Open Redirect to Account Takeover
https://bountysecurity.ai/blogs/news/oauth-open-redirect-to-account-takeover-pentest-case
Capital One Teams Up With Top-Tier Ethical Hackers at H1-305
https://www.hackerone.com/lhe/capital-one-h1-305
How I Found My First RCE !
mchklt/how-i-found-my-first-rce-f80073626fff" rel="nofollow">https://medium.com/@mchklt/how-i-found-my-first-rce-f80073626fff
The bounties for WordPress vulnerabilities has increased! You can report vulns in any of the 60K+ #WordPress plugins!
Join to the community to get started: https://discord.gg/FS6b9ghzU3
GitHub - hakluke/hakip2host: hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
https://github.com/hakluke/hakip2host
Till Recollapse: Fuzzing the Web for Mysterious Vulnerabilities by Andre Baptista (@0xacb)
https://www.youtube.com/watch?v=CiIyaZ3x49c
GitHub - GJDuck/RRFuzz: Fuzz anything with Program Environment Fuzzing
https://github.com/GJDuck/RRFuzz
Mastering Subdomain Takeovers
https://tanishqshahsays.medium.com/mastering-subdomain-takeovers-c9a531fe5d3b
Breaking Down DOM-based XSS: A Practical Exploration
osamaavvan/breaking-down-dom-based-xss-a-practical-exploration-929d44f10906" rel="nofollow">https://medium.com/@osamaavvan/breaking-down-dom-based-xss-a-practical-exploration-929d44f10906
Latest Nuclei Release v3.2.7!
https://github.com/projectdiscovery/nuclei/releases/tag/v3.2.7
Win a Free Trip to DEFCON 2024
https://www.youtube.com/watch?v=TMaw92jPx3s