| Sat, 09 May 2026 23:32:02 GMT |
Unmasking MuddyWater ConnectWise ScreenConnect Installer |
cybersecurity, information-security |
Yes |
|
| Sat, 09 May 2026 23:32:22 GMT |
The Law Already Solved This: Property, Agency, and the Missing Pr... |
cybersecurity |
Yes |
|
| Sat, 09 May 2026 23:55:04 GMT |
Why SSH Keys Are a Ticking Time Bomb in Your Infrastructure (And ... |
security |
Yes |
|
| Sat, 09 May 2026 23:18:00 GMT |
Why Developers Should Learn Basic Hacking |
cybersecurity |
Yes |
|
| Sat, 09 May 2026 23:25:59 GMT |
The Telnet Auth Bypass Got Patched. The Worse Bug Underneath Didn... |
cybersecurity, hacking |
Yes |
|
| Sat, 09 May 2026 23:29:13 GMT |
Web Academy Business Logic Vulnerabilities— Excessive trust in ... |
cybersecurity, web-security, pentesting |
Yes |
|
| Sat, 09 May 2026 23:55:54 GMT |
Earn Up To $200 Creating Content About Crypto Payments With Kivor... |
bounty-program |
Yes |
|
| Fri, 08 May 2026 13:39:15 GMT |
The 9-Second Production Wipe: An AI Agent Incident |
application-security |
|
|
| Mon, 04 May 2026 23:53:49 GMT |
Break The Syntax CTF — Web Challenge 2 Writeup |
lfi |
|
|
| Sat, 02 May 2026 01:22:29 GMT |
Penetration Testing Report: Authorized Security Assessment of Bit... |
pentest |
|
|
| Mon, 13 Apr 2026 22:53:20 GMT |
CVE-2023–6972 Wordpress Backup Migration ≤1.3.9 Arbitrary Fil... |
security-research |
|
|
| Sun, 15 Mar 2026 17:49:52 GMT |
TryHackMe — Takeover Writeup |
subdomain-takeover |
|
|
| Sat, 09 May 2026 20:45:25 GMT |
Cloudflare Bypass via Real IP Leading to Remote Code Execution (R... |
bug-bounty, security, pentesting |
|
|
| Mon, 04 May 2026 12:56:26 GMT |
Beyond alert(1): Advanced XSS Payload Crafting, Filter Bypasses &... |
xss-bypass |
|
|
| Sun, 12 Apr 2026 10:48:18 GMT |
Ubah Keterampilan Anda Menjadi ALPH: Panduan Hadiah Alphland |
bounty-program |
|
|
| Sat, 09 May 2026 20:28:59 GMT |
The Moment I Stopped Falling Alone |
vulnerability |
|
|
| Tue, 17 Mar 2026 09:18:53 GMT |
Web Security Series #6 — Exploiting SQL Injection to Extract Se... |
bug-bounty-hunting |
|
|
| Wed, 06 May 2026 21:51:12 GMT |
The Recon Goldmine Hidden Inside Exposed AI Instruction Files |
bug-bounty-tips, bugs |
|
|
| Sat, 09 May 2026 01:19:44 GMT |
I Was Given a Broken Java App. I Found Every Flaw, Proved Every A... |
application-security |
|
|
| Thu, 23 Apr 2026 14:41:01 GMT |
Stop Learning — Start Mastering These Cybersecurity Tools in 20... |
cybersecurity-tools |
|
|
| Sat, 09 May 2026 15:40:53 GMT |
Defence in Depth: The Layered Cybersecurity Strategy Every Busine... |
information-technology |
|
|
| Mon, 13 Apr 2026 14:14:34 GMT |
Zero‑Touch RCE (Remote Code Execution) Attack |
remote-code-execution |
|
|
| Sat, 11 Apr 2026 14:24:38 GMT |
â� SOC287 — Arbitrary File Read on Checkpoint Security Gateway... |
lfi |
|
|
| Mon, 13 Apr 2026 22:31:01 GMT |
The Cost of Trusting My Own Fingers |
bounties |
|
|
| Sun, 17 Aug 2025 17:58:45 GMT |
$$$ How I Exploited a Business Logic Flaw to Slash Product Prices... |
bug-bounty-program |
|
|
| Wed, 25 Feb 2026 01:47:45 GMT |
How I Found a Path Traversal in the Rancher Dashboard via HAR Rep... |
web-pentest |
|
|
| Wed, 22 Apr 2026 07:32:56 GMT |
One Forged Packet, $292 Million Gone |
exploit |
|
|
| Wed, 11 Feb 2026 21:37:40 GMT |
From Course Notes to CVE: How a GXPN Study Session Uncovered a 40... |
vulnerability-disclosure |
|
|
| Wed, 28 Jan 2026 07:31:37 GMT |
Lab: Targeted web cache poisoning using an unknown header | Port... |
web-cache-poisoning |
|
|
| Fri, 17 Apr 2026 16:11:01 GMT |
Mirage (LFI) WebVerse |
lfi |
|
|
| Thu, 25 Dec 2025 00:47:15 GMT |
Subdomain Takeover Explained: Complete Step-by-Step Guide (Recon ... |
subdomain-takeover |
|
|
| Thu, 07 May 2026 15:42:57 GMT |
How I Bypassed Apple’s Security to Clone Any Podcast (and Got H... |
bug-bounty-tips |
|
|
| Wed, 18 Mar 2026 14:34:33 GMT |
File Inclusion Zafiyetleri: LFI ve RFI Nedir, Nasıl Çalışır ... |
file-inclusion |
|
|
| Sun, 03 May 2026 07:01:01 GMT |
Sprocket Line (RXSS) WebVerse |
xss-vulnerability |
|
|
| Sat, 11 Apr 2026 05:12:45 GMT |
Pentester Labs Recon 02 Writeup |
recon |
|
|
| Sat, 09 May 2026 17:48:44 GMT |
From a Simple CSRF to Full Account Takeover |
bug-bounty, penetration-testing, bug-bounty-tips, bug-bounty-writeup |
|
|
| Sat, 09 May 2026 14:54:24 GMT |
� SDLC 全解�:軟體開發生命週期是什麼? |
information-technology |
|
|
| Sun, 13 Jul 2025 16:32:21 GMT |
ProConOS Exposed: What ICS Security Teams Need to Know |
censys |
|
|
| Sat, 04 Apr 2026 09:10:35 GMT |
We’ve messed up, a lot. Here’s Why Scribble Still Exists to c... |
bounties |
|
|
| Sat, 09 May 2026 21:04:50 GMT |
Cooctus Stories (THM) Tryhackme Writeup Answer |
hacking |
|
|
| Sun, 03 May 2026 14:59:22 GMT |
Your secrets deserve better than plaintext: why I designed Keyden... |
api-key |
|
|
| Wed, 08 Apr 2026 22:09:58 GMT |
How I Discovered a Blind SQL Injection in a Private program |
bugcrowd |
|
|
| Tue, 05 May 2026 16:21:01 GMT |
The “Infinite Discount� Glitch: How I Used a Race Condition t... |
bug-bounty-writeup |
|
|
| Fri, 12 Dec 2025 06:49:56 GMT |
How Variable Data Technology is Transforming Postcard & Brochure ... |
vdp |
|
|
| Sat, 09 May 2026 12:53:12 GMT |
Zero: Seeing What’s Hidden |
infosec, ethical-hacking |
|
|
| Sat, 09 May 2026 18:49:50 GMT |
BoogeyMan 2 -TryHackMe Write-up |
information-security |
|
|
| Sat, 20 Apr 2024 17:20:58 GMT |
TryHackMe — Brute Walkthrough | TheHiker |
log-poisoning |
|
|
| Sat, 09 May 2026 18:06:41 GMT |
How to Use ChatGPT Correctly in 2026 (Complete Beginner-to-Advanc... |
information-technology |
|
|
| Thu, 26 Mar 2026 00:32:02 GMT |
Révolution Lumière |
lfi |
|
|
| Fri, 01 May 2026 18:00:35 GMT |
Copy Fail: The 732-Byte Exploit That Roots Nearly a Decade of Lin... |
exploit |
|
|
| Tue, 28 Apr 2026 11:47:05 GMT |
What Tools Do Cyber Security Experts Actually Use Every Day? (And... |
cybersecurity-tools |
|
|
| Sat, 09 May 2026 22:23:38 GMT |
CVE-2026-44843: One Chat Message Steals Your Credentials. Then It... |
security, information-security |
|
|
| Fri, 01 May 2026 07:49:18 GMT |
T̶A̶X̶ WAF Evasion: Escalating User-Controlled Input to Cross... |
cross-site-scripting |
|
|
| Mon, 04 May 2026 07:21:47 GMT |
A Missed Bug that caused a Major Breach: Lessons from Lovable Hac... |
hackerone |
|
|
| Tue, 05 May 2026 05:51:37 GMT |
HackTheBox — TwoMillion: A Lesson in API Abuse and Privilege Es... |
bug-bounty-writeup |
|
|
| Fri, 01 May 2026 09:40:56 GMT |
Excessive Data Exposure Leading to Unauthorized Access to Paid Fe... |
vulnerability-disclosure |
|
|
| Fri, 08 May 2026 11:04:27 GMT |
BUGTROTTER: Kali-in-Docker as MCP — AI-Driven AD Red Teaming |
vapt |
|
|
| Wed, 22 Apr 2026 13:21:41 GMT |
Pickle Rick Challenge — A Short Comprehension |
pentest |
|
|
| Mon, 20 Apr 2026 13:01:27 GMT |
AI-Driven Penetration Testing: Integrating Kali Linux Arsenal wit... |
pentest |
|
|
| Sun, 26 Apr 2026 23:11:15 GMT |
From Data Dumping to Bug Hunting: Building a Recon Pipeline That ... |
recon |
|
|
| Tue, 28 Apr 2026 07:09:41 GMT |
owockibot: The Bounty Board Powering the Agent Economy |
bounty-program |
|
|
| Thu, 07 May 2026 06:04:52 GMT |
Understanding Injection Attacks: A Deep Dive into SQL Injection w... |
xss-attack |
|
|
| Sat, 09 May 2026 18:31:25 GMT |
VPN на Android в поездке: что проверить дÐ... |
cyber-security-awareness |
|
|
| Mon, 06 Apr 2026 21:45:53 GMT |
Cookie(Çerez) Türleri ve Pentest Açısından Önemi |
web-pentest |
|
|
| Wed, 01 Apr 2026 18:43:56 GMT |
Lab: SQL injection attack, listing the database contents on Oracl... |
web-pentest |
|
|
| Tue, 21 Apr 2026 15:05:26 GMT |
Web Security Series #17 — Exploiting Local File Inclusion (LFI)... |
file-inclusion |
|
|
| Tue, 15 Jul 2025 12:15:58 GMT |
“Secure� OPC UA Setups Are Being Hacked — Here’s Why |
censys |
|
|
| Sat, 09 May 2026 16:42:44 GMT |
Microsoft SQL Server Attack |
penetration-testing |
|
|
| Mon, 16 Mar 2026 07:31:29 GMT |
How I hacked AI Agent and worth bounty of $$$$ |
bugcrowd |
|
|
| Sun, 05 Apr 2026 18:11:17 GMT |
Information Disclosure Through Unrestricted API Endpoints |
information-disclosure |
|
|
| Mon, 16 Feb 2026 08:42:31 GMT |
Lab: Exploiting HTTP request smuggling to perform web cache poiso... |
web-cache-poisoning |
|
|
| Tue, 31 Mar 2026 07:57:14 GMT |
How I Test API Keys Using Only Burp Suite |
api-key |
|
|
| Sat, 18 Apr 2026 20:01:01 GMT |
Natural Capital, Deep Time, and What Refuses to Be Measured |
information-disclosure |
|
|
| Thu, 29 Jan 2026 21:21:39 GMT |
Turning Fuzzing Into $2,550: How a Simple Bug Gave Me Access to E... |
bounties |
|
|
| Fri, 08 May 2026 10:26:57 GMT |
Cross-site Scripting (XSS) in detail.. |
cross-site-scripting |
|
|
| Fri, 13 Mar 2026 00:00:04 GMT |
File Inclusion | TryHackMe Write-up |
file-inclusion |
|
|
| Tue, 23 Sep 2025 13:01:51 GMT |
Why Email Marketing Is the Secret Growth Tool for Directory Websi... |
directory-listing |
|
|
| Thu, 13 Feb 2025 03:29:37 GMT |
ZoomEye Meets DeepSeek: AI-Powered Cyberspace Intelligence |
zoomeye |
|
|
| Sun, 19 Apr 2026 15:57:12 GMT |
XSS Bypass urlparse filter evasion in Python |
xss-bypass |
|
|
| Mon, 26 Jan 2026 07:25:06 GMT |
How Forgotten DNS Records Lead to Subdomain Takeovers |
subdomain-takeover |
|
|
| Tue, 05 May 2026 09:32:07 GMT |
Google Dorks — Advanced Search |
google-dorking, google-dork |
|
|
| Wed, 06 May 2026 18:35:55 GMT |
Your Order Number Was the Only Thing Between Your Data and Anyone... |
idor |
|
|
| Thu, 16 Apr 2026 10:24:30 GMT |
Why Every Business Needs a Penetration Test in 2026 |
pentest |
|
|
| Thu, 02 Apr 2026 15:28:31 GMT |
O Primeiro passo é o mais importante! |
pentest |
|
|
| Sat, 21 Mar 2026 20:37:31 GMT |
Using Nmap Scanner |
vulnerability-scanning |
|
|
| Fri, 10 Apr 2026 14:53:24 GMT |
The Ultimate Guide to Proxying and Pentesting MCP Servers!! |
pentest |
|
|
| Thu, 02 Apr 2026 17:35:36 GMT |
How I Found a Subdomain Takeover via BetterUptime |
subdomain-takeover |
|
|
| Sun, 28 Dec 2025 08:13:44 GMT |
Subzy Tool |
subdomain-takeover |
|
|
| Sun, 05 Apr 2026 13:27:30 GMT |
The Vault Sentry — A Startup’s Strategic Edge in Cybersecurit... |
api-key |
|
|
| Fri, 01 May 2026 16:26:26 GMT |
� 什麼是 Cross-Site Scripting (XSS)? |
cross-site-scripting |
|
|
| Thu, 26 Mar 2026 03:31:59 GMT |
IDOR on Tesla Disclosing Users’ Emails |
bug-bounty-hunter |
|
|
| Thu, 09 Apr 2026 17:40:41 GMT |
I Got Tired of Running 15 Different Nmap Commands. So I Built My ... |
vulnerability-scanning |
|
|
| Wed, 29 Apr 2026 16:56:27 GMT |
When a Git Redirect Carries Your Credentials With It: Finding an ... |
security-research |
|
|
| Sat, 11 Apr 2026 05:28:40 GMT |
Pentester Recon 03 Write Up |
recon |
|
|
| Wed, 25 Mar 2026 10:55:24 GMT |
METASPLOIT EXPLOIT |TRYHACKME PREMIUM |
cyber-sec |
|
|
| Sat, 09 May 2026 13:22:15 GMT |
Is Your Network Orchestration Layer a Single Point of Failure Wai... |
infosec, vapt |
|
|
| Sat, 09 May 2026 21:02:12 GMT |
DDoS Clearing House — A Dutch Model for Defense in the Digital ... |
information-security, cyber-security-awareness |
|
|
| Sun, 15 Mar 2026 11:14:38 GMT |
Local File Inclusion (LFI) in Leave Application System (PHP & SQL... |
lfi |
|
|
| Sat, 04 Apr 2026 05:31:01 GMT |
Shodan + Censys Internet Ka X-Ray: Bina Scan Kiye Sab Kuch Dekho!... |
shodan |
|
|
| Fri, 08 May 2026 13:56:38 GMT |
OnSystemShellDredd — Anonymous FTP RSA Key Leak + SUID cpulimit... |
pentesting |
|
|
| Sat, 25 Apr 2026 09:18:33 GMT |
Bug Bounty Series — Part 3 (HTTP Parameter Pollution) |
bug-bounty-hunter |
|
|
| Wed, 15 Apr 2026 10:36:07 GMT |
Claude AI Discovers Zero-Day RCE in Vim and Emacs: The Dawn of AI... |
rce |
|
|
| Fri, 17 Apr 2026 15:39:41 GMT |
Bug Bounty 2026: Why the “End of the World� is Actually a $50... |
bounties |
|
|
| Sat, 09 May 2026 12:10:05 GMT |
How I Accidentally Became a Superuser, Dumped a University Archiv... |
web-security |
|
|
| Wed, 06 May 2026 13:57:55 GMT |
DAMN Vulnerable RESTaurant |
vapt |
|
|
| Thu, 07 May 2026 08:48:21 GMT |
Driving Operational Value Through Multi Agent Orchestration |
cybersecurity-tools |
|
|
| Thu, 07 May 2026 01:31:36 GMT |
Reflected DOM XSS |
xss-attack |
|
|
| Sat, 09 May 2026 14:33:30 GMT |
Defense Dynamics in the Days of Deluge and Decoys |
information-security, cyber-security-awareness |
|
|
| Thu, 09 Apr 2026 19:37:25 GMT |
Pentest Aşamaları Nelerdir? |
pentest |
|
|
| Sun, 22 Mar 2026 10:40:15 GMT |
DVWA: File Inclusion Vulnerability (Low Security) |
file-inclusion |
|
|
| Mon, 27 Apr 2026 20:32:13 GMT |
When Features Do More Than They Should |
bugcrowd |
|
|
| Sun, 12 Apr 2026 12:29:45 GMT |
პირ�ვნების ძიების სრული... |
google-dork |
|
|
| Tue, 14 Apr 2026 04:36:01 GMT |
XSS Cross-Site Scripting Zero Se Hero: Browser Ko Apna Weapon Ban... |
cross-site-scripting |
|
|
| Tue, 14 Apr 2026 16:41:14 GMT |
Is Bug Bounty a Good Long-Term Career? The Reality in 2026 |
bug-bounty-hunter |
|
|
| Tue, 05 May 2026 22:06:03 GMT |
LFI Automated Scanning: Finding and Fuzzing with ffuf |
local-file-inclusion |
|
|
| Sun, 23 Feb 2025 11:17:25 GMT |
$1000-$10k worth Leaks via Github Secret Dorks |
github-dorking |
|
|
| Fri, 24 Apr 2026 21:44:10 GMT |
TryHackMe Recruit Writeup |
ssrf |
|
|
| Fri, 24 Apr 2026 18:01:11 GMT |
Signed, Vulnerable, and Still Dangerous: What a BYOVD Research Pr... |
security-research |
|
|
| Wed, 06 May 2026 06:29:13 GMT |
CVE-2026–31431 — Copy Fail: Linux Privilege Escalation via Ke... |
cve |
|
|
| Mon, 04 May 2026 14:48:00 GMT |
I Found 150+ Vulnerabilities in DeFi Protocols. Here’s Why I C... |
bounties |
|
|
| Sat, 09 May 2026 08:41:58 GMT |
and they say to be seen is to be loved. |
vulnerability |
|
|
| Mon, 13 Apr 2026 06:37:51 GMT |
File Inclusion on DVWA |
local-file-inclusion, file-inclusion |
|
|
| Sat, 09 May 2026 23:03:39 GMT |
Your DevOps Home Lab Is Lying To You |
information-technology |
|
|
| Wed, 29 Apr 2026 23:27:52 GMT |
XSS Sistemi Nasıl Manipüle Eder? |
xss-attack |
|
|
| Mon, 04 May 2026 19:15:10 GMT |
From Directory Brute-Forcing to Real-Time GPS Tracking: Exploitin... |
bug-bounty-writeup |
|
|
| Sat, 09 May 2026 22:38:20 GMT |
Names Are A Security Debt We Can No Longer Afford |
cybersecurity |
|
|
| Tue, 28 Apr 2026 10:03:47 GMT |
Bypassing File Upload Limits via Race Condition |
bugbounty-writeup |
|
|
| Wed, 05 Nov 2025 12:42:46 GMT |
How I Hacked Bank’s Admin Portal |
vdp |
|
|
| Sat, 25 Oct 2025 12:23:25 GMT |
How to find leaks on GitHub as a beginner. Logic is main key |
github-dorking |
|
|
| Tue, 28 Apr 2026 16:40:18 GMT |
How I Discovered a Cognito Misconfiguration That Bypassed Corpora... |
security-research |
|
|
| Thu, 02 Oct 2025 06:59:46 GMT |
Endless Cashback Glitch:How I Unlocked Unlimited Free Orders with... |
bug-bounty-program |
|
|
| Sun, 14 Dec 2025 06:37:06 GMT |
My Bug Bounty Diary |
subdomain-enumeration |
|
|
| Sat, 25 Apr 2026 17:32:01 GMT |
Bug Bounty Automation with n8n Ep.1 |
ssrf |
|
|
| Sat, 11 Apr 2026 18:05:11 GMT |
Ha0ker is the online identity of Gagandeep Singh, a professional ... |
bugcrowd |
|
|
| Mon, 06 Apr 2026 10:39:59 GMT |
Bug Bounty / Web Application Security Hunting Checklist - 2026 XS... |
bug-bounty-hunter |
|
|
| Sat, 02 Aug 2025 14:15:23 GMT |
The Silent Risk in Your ICS: Why S7 Protocol Needs Security Atten... |
censys |
|
|
| Wed, 08 Apr 2026 08:46:11 GMT |
Practical JavaScript Recon for Bug Bounty: A Real-World Passive-F... |
recon |
|
|
| Fri, 03 Apr 2026 07:21:16 GMT |
Why API Key Security Should Be Your Startup’s First Priority |
api-key |
|
|
| Tue, 28 Apr 2026 14:44:17 GMT |
Cross-Site Scripting: Serangan Tersembunyi di Balik Input Penggun... |
cross-site-scripting |
|
|
| Wed, 29 Apr 2026 13:59:27 GMT |
Finding an IDOR in Tesla From the Outside |
bugcrowd |
|
|
| Tue, 18 Nov 2025 08:33:41 GMT |
A Chain of Vulnerabilities Leading to Critical Information Disclo... |
bug-bounty-program |
|
|
| Sat, 09 May 2026 13:24:36 GMT |
Understanding BOLA — The #1 API Security Risk You Can’t Ignor... |
bug-bounty |
|
|
| Wed, 29 Apr 2026 11:19:12 GMT |
$500 OAuth Account Fusion Pre-Takeover Attack |
hackerone |
|
|
| Mon, 27 Apr 2026 02:31:01 GMT |
AI for Frontend Developers — Day 37 |
file-upload |
|
|
| Thu, 09 Apr 2026 17:39:27 GMT |
From 401 to BAC: How a Refresh Broke Workspace Authorization |
vulnerability-disclosure |
|
|
| Mon, 27 Apr 2026 09:39:12 GMT |
Top Cyber Security Tools Every Beginner Should Learn in 2026 |
cybersecurity-tools |
|
|
| Thu, 07 May 2026 11:31:50 GMT |
OWASP Top 10 #1: Broken Access Control — The Most Exploited Web... |
idor |
|
|
| Sun, 03 May 2026 11:10:19 GMT |
Sistemleri Savunmak İçin Saldırmak – Pentest 101 |
pentest |
|
|
| Thu, 30 Apr 2026 03:16:01 GMT |
Discovering a Stored XSS Vulnerability in a Blog Feature (Respons... |
xss-vulnerability |
|
|
| Sat, 09 May 2026 19:54:10 GMT |
OffSec Proving Grounds “BBSCute� CTF writeup |
penetration-testing, ethical-hacking |
|
|
| Thu, 07 May 2026 08:22:18 GMT |
Mastering the Modern Web: Why Elementor is the Ultimate Choice fo... |
bugs |
|
|
| Fri, 24 Apr 2026 12:58:35 GMT |
When an Image Becomes an Attack: Exploiting SVG File Upload Vulne... |
file-upload |
|
|
| Sat, 09 May 2026 19:17:24 GMT |
TCM Practical AI Pentest Associate (PAPA) Review: My Honest Exper... |
penetration-testing |
|
|
| Tue, 05 May 2026 16:46:53 GMT |
Title: Advanced WordPress Troubleshooting: Beyond the “Deactiva... |
bugs |
|
|
| Sat, 09 May 2026 15:30:01 GMT |
Team | TryHackMe Walkthrough |
ethical-hacking |
|
|
| Sat, 09 May 2026 13:50:26 GMT |
Bypassing Two-Factor Authentication Through Social Engineering Te... |
ethical-hacking |
|
|
| Fri, 24 Jan 2025 09:34:52 GMT |
A new Holistic temple opening InLeeds |
web-pentest |
|
|
| Mon, 17 Nov 2025 23:45:18 GMT |
DorkFi: The Triumph of a Team You Can Trust |
dorks |
|
|
| Tue, 04 Nov 2025 07:31:55 GMT |
Google Dorking |
dorks |
|
|
| Sun, 15 Feb 2026 09:26:13 GMT |
TryHackMe Walkthrough -Subdomain Enumeration |
subdomain-enumeration |
|
|
| Wed, 29 Apr 2026 20:58:20 GMT |
Laboratorio de vulnerabilidades en el lado del cliente |
xss-vulnerability |
|
|
| Tue, 05 May 2026 14:54:31 GMT |
Unauthorized Workspace Deletion via Broken Access Control |
bug-bounty-writeup |
|
|
| Tue, 21 Apr 2026 13:33:52 GMT |
Kioptrix: 2014 — VulnHub Walkthrough pChart LFI + PhpTax RCE to... |
lfi |
|
|
| Sat, 09 May 2026 10:46:18 GMT |
How AI Is Changing Cybersecurity Training |
information-technology |
|
|
| Sat, 02 May 2026 15:14:37 GMT |
Signature Bypass via Control Character Injection → Arbitrary F... |
bugbounty-writeup |
|
|
| Wed, 06 May 2026 11:30:53 GMT |
How Local Business Directory Listing Helps Attract Local Customer... |
directory-listing |
|
|
| Fri, 08 May 2026 17:14:52 GMT |
# I Tracked Your Location Without Your Permission ## How a Misco... |
infosec |
|
|
| Sat, 09 May 2026 13:31:00 GMT |
Tryhackme Writeup Room Harder Walkthrough |
pentesting, ethical-hacking |
|
|
| Thu, 30 Apr 2026 14:25:30 GMT |
How I Use AI to Find Bugs Faster — My Full AI-Augmented Bug Bou... |
bugbounty-writeup |
|
|
| Wed, 30 Apr 2025 17:08:29 GMT |
Exploring Subdomains: What They Are and How to Find Them |
subdomain-enumeration |
|
|
| Sun, 03 May 2026 20:38:34 GMT |
ENSI CTF — Medrassa Web Challenge Writeup |
idor |
|
|
| Tue, 23 Sep 2025 06:36:22 GMT |
Mengamankan File Sensitif & Directory Listing website dengan .ht... |
directory-listing |
|
|
| Sun, 05 Apr 2026 05:02:34 GMT |
Exploiting an IPv6 Remote Code Execution Vulnerability: A Practic... |
remote-code-execution |
|
|
| Sat, 09 May 2026 22:06:45 GMT |
The Walking Dead: 22 Domains vs. The “Zombie� Malware |
cybersecurity |
|
|
| Sat, 02 May 2026 04:43:46 GMT |
Copy Fail: Easily gained root access in system. |
exploit |
|
|
| Wed, 17 Dec 2025 09:57:30 GMT |
The Mother Lode: Hacking with GitHub Dorking |
github-dorking |
|
|
| Sat, 28 Feb 2026 14:32:47 GMT |
TryHackMe CTF Walkthrough- Love at First Breach 2026: Valenfind |
lfi |
|
|
| Fri, 07 Feb 2025 05:12:28 GMT |
Do You Struggle Finding Internal/Hidden Subdomains? Recon part 5 |
subdomain-enumeration |
|
|
| Sat, 06 Dec 2025 17:05:14 GMT |
GitHub Pages Subdomain Takeover on aiaa-dpw.larc.nasa.gov (NASA V... |
subdomain-takeover |
|
|
| Wed, 29 Apr 2026 18:17:30 GMT |
The Rise of Hackbots: How AI Is Transforming Cybersecurity |
hackerone |
|
|
| Thu, 30 Apr 2026 04:43:43 GMT |
Intigriti April 2026 XSS Challenge Writeup |
bugbounty-writeup |
|
|
| Thu, 07 May 2026 18:11:37 GMT |
Scaling, Governance & the Bigger Picture |
application-security |
|
|
| Fri, 24 Jan 2025 00:08:47 GMT |
A majestic temple opportunity of wellbeing and wellness |
web-pentest |
|
|
| Fri, 08 May 2026 22:01:34 GMT |
AI Is Breaking the Two Rules That Kept the Internet Safe — And ... |
vulnerability-disclosure |
|
|
| Mon, 06 Apr 2026 21:37:15 GMT |
Walkthrough: Executing Local File Inclusion and Remote Code Execu... |
remote-code-execution, local-file-inclusion |
|
|
| Sun, 08 Mar 2026 11:01:01 GMT |
I Paid $500 for AI Directory Listings. Here Is My Honest ROI Brea... |
directory-listing |
|
|
| Fri, 24 Apr 2026 12:21:00 GMT |
Understanding Cross-Site Scripting (XSS): Reflected vs Stored Att... |
xss-vulnerability |
|
|
| Fri, 20 Mar 2026 05:45:47 GMT |
Cloudflare WAF Bypass Leading to Reflected XSS via SVG Injection |
xss-bypass |
|
|
| Mon, 16 Mar 2026 18:05:08 GMT |
xss0r V6 is Finally Released! |
xss-bypass |
|
|
| Thu, 26 Feb 2026 13:54:44 GMT |
Poison — HTB |
lfi |
|
|
| Sat, 09 May 2026 13:01:00 GMT |
Why One Person Falls in Love Faster in Relationships |
vulnerability |
|
|
| Fri, 06 Jun 2025 15:47:21 GMT |
��♂� GitHub Dorking for Bug Bounty: Hackers' Hidden Playg... |
github-dorking |
|
|
| Fri, 31 May 2024 13:29:16 GMT |
Map of the worlds best URLs 2025 |
log-poisoning |
|
|
| Fri, 01 May 2026 22:04:53 GMT |
From Source Code Review To Critical Vulnerability — Critical Fi... |
hackerone |
|
|
| Wed, 25 Mar 2026 08:34:09 GMT |
Improper Input Handling Leading to Client Side Code Execution and... |
bug-bounty-hunter, vulnerability-disclosure |
|
|
| Sun, 03 May 2026 18:55:57 GMT |
LFI to RCE: Remote File Inclusion and How Servers Execute Your Sh... |
local-file-inclusion |
|
|
| Sun, 22 Oct 2023 19:57:30 GMT |
Performing a Log Poisoning Attack |
log-poisoning |
|
|
| Sun, 07 Dec 2025 06:18:32 GMT |
Breaking the Perimeter: How My Custom Python Tool Bypassed a Fede... |
vdp |
|
|
| Tue, 21 Apr 2026 12:21:13 GMT |
95% of PII Redaction Doesn’t Need an LLM. The Other 5% Is Where... |
information-disclosure |
|
|
| Sat, 09 May 2026 15:17:35 GMT |
A Anatomia dos VÃrus de Computador |
information-technology |
|
|
| Sat, 09 May 2026 19:12:03 GMT |
Automating Angry Birds Transformers in 2026: A Deep Dive into ABT... |
exploit |
|
|
| Mon, 04 May 2026 19:01:35 GMT |
LFI to RCE: Weaponizing File Uploads with PHP Shells |
local-file-inclusion |
|
|
| Fri, 08 May 2026 05:00:03 GMT |
API Security — Rate limiting, input validation, and OWASP API T... |
application-security |
|
|
| Wed, 06 May 2026 11:36:01 GMT |
Google Dorking |
google-dorking, dorking |
|
|
| Sun, 03 May 2026 06:17:38 GMT |
SQL Injection Vulnerability |
file-upload |
|
|
| Sat, 09 May 2026 18:31:00 GMT |
ACTIVE DIRECTORY |
security |
|
|
| Sat, 09 May 2026 10:45:04 GMT |
Bypass of Open Redirect Fix on lovable.dev via /..// Path Travers... |
vulnerability, bugs |
|
|
| Sat, 09 May 2026 19:16:54 GMT |
TCM Practical AI Pentest Associate (PAPA) Review: My Honest Exper... |
penetration-testing |
|
|
| Sat, 09 May 2026 14:32:16 GMT |
How Sable Turned a Scanner Endpoint into Azure Token Exfiltration |
pentesting |
|
|
| Fri, 06 Feb 2026 06:33:08 GMT |
5 Ways to Bypass Email Verification Without Using Any Tool |
bug-bounty-program |
|
|
| Tue, 05 May 2026 22:10:53 GMT |
LFI Prevention: How to Actually Fix File Inclusion Vulnerabilitie... |
local-file-inclusion |
|
|
| Thu, 20 Nov 2025 17:16:47 GMT |
The Health Factor: How DorkFi Keeps Your Position Safe |
dorks |
|
|
| Tue, 28 Apr 2026 13:18:20 GMT |
25 Open-Source Cybersecurity Tools That Work Even When Your Budge... |
cybersecurity-tools |
|
|
| Fri, 01 May 2026 19:05:59 GMT |
IDOR Unveiled: Hashgate — picoCTF 2026 |
idor |
|
|
| Sun, 26 Apr 2026 14:51:52 GMT |
How I Found a Reflected XSS in a Government Website |
xss-vulnerability |
|
|
| Sat, 09 May 2026 17:04:08 GMT |
These 30+ Tools HACKERS Use Daily (Most Are FREE!) |
ethical-hacking |
|
|
| Sun, 03 May 2026 09:14:45 GMT |
The Ghost in the Machine: A Bug Bounty Short Story |
recon |
|
|
| Thu, 13 Mar 2025 18:09:56 GMT |
How I Found Sensitive Information using Github Dorks in Bug Bount... |
github-dorking |
|
|
| Wed, 29 Apr 2026 12:52:39 GMT |
Build a Simple File Upload Website Using Azure Blob Storage |
file-upload |
|
|
| Fri, 13 Mar 2026 02:31:00 GMT |
How I Use Google Dorking to Find Hidden Vulnerabilities |
google-dorking, google-dork |
|
|
| Sat, 09 May 2026 14:01:01 GMT |
Threat Hunting for Network Based Attacks - LetsDefend [Part 3] |
bug-bounty |
|
|
| Fri, 08 May 2026 18:50:57 GMT |
How I hacked a protected wifi in 15 minutes!(With a $20 Adapter) |
infosec |
|
|
| Sat, 09 May 2026 13:06:22 GMT |
What Actually Happens When You Click “I Agree� Without Readin... |
cyber-security-awareness |
|
|
| Thu, 27 Mar 2025 23:46:11 GMT |
Make Break and Betrayal |
web-pentest |
|
|
| Sat, 02 May 2026 16:49:25 GMT |
Beyond the Ping: Mastering Nmap for Network Reconnaissance in 202... |
vulnerability-scanning |
|
|
| Fri, 13 Mar 2026 14:55:26 GMT |
Web Security Series #2 — Bypassing Authentication via MFA Tampe... |
bug-bounty-hunting |
|
|
| Mon, 04 May 2026 11:34:52 GMT |
How I Found XSS by Understanding Context |
xss-vulnerability |
|
|
| Tue, 14 Apr 2026 09:57:40 GMT |
Pentester Lab 06 Writeup |
recon |
|
|
| Tue, 05 May 2026 04:50:20 GMT |
Everyone is talking about AI taking people’s jobs and even repl... |
hackerone |
|
|
| Fri, 08 May 2026 09:25:57 GMT |
How a YouTube Recommendation Led Me to Claim Free Coins Twice |
application-security |
|
|
| Sat, 10 Jan 2026 05:03:45 GMT |
Lab:Web cache poisoning via an unkeyed query parameter | Portswi... |
web-cache-poisoning |
|
|
| Thu, 23 Apr 2026 11:12:22 GMT |
One Missing Dictionary Key. One Production Cloud Identity. |
rce |
|
|
| Tue, 24 Mar 2026 07:41:00 GMT |
How I Built a Directory Listing Site (ToolIndex.net) and What I L... |
directory-listing |
|
|
| Sat, 09 May 2026 18:28:44 GMT |
Designing safer listItems and getItem permissions |
security |
|
|
| Sun, 03 May 2026 19:06:32 GMT |
Hacker101 CTF Walkthrough — A Little Something to Get You Start... |
hackerone |
|
|
| Sat, 25 Apr 2026 02:19:00 GMT |
Yellow Cockatoo RAT (Jupyter’s Bro)Write-Up (CyberDefenders) |
remote-code-execution |
|
|
| Tue, 10 Mar 2026 09:59:23 GMT |
I Thought I Found 259 Exposed Systems in Bengaluru… I Was Wrong |
shodan |
|
|
| Thu, 16 Apr 2026 11:14:18 GMT |
Finance in Nigeria Just Moved to WhatsApp |
bounty-program |
|
|
| Sat, 09 May 2026 19:27:33 GMT |
Sonar Agent: AI-Powered Auto-Remediation for SonarQube in CI/CD P... |
security |
|
|
| Thu, 30 Apr 2026 12:27:10 GMT |
What is XSS (Cross-Site Scripting)? Explained Simply for Beginner... |
xss-attack |
|
|
| Sat, 09 May 2026 11:02:18 GMT |
The Enterprise Security Risks Hiding in Plain Sight |
application-security, cyber-security-awareness |
|
|
| Tue, 05 May 2026 05:22:22 GMT |
JBoss 6 RCE Exploitation and Privilege Escalation via Misconfigur... |
rce |
|
|
| Sat, 06 Dec 2025 23:06:15 GMT |
Big News from DorkFi — PreFi Rewards Drop + Contest Live! |
dorks |
|
|
| Fri, 01 May 2026 20:23:15 GMT |
Shodan Facet Searches That Read Like Threat Intel Poetry |
shodan |
|
|
| Tue, 14 Apr 2026 10:19:13 GMT |
Pentester Lab Recon 07 Writeup |
recon |
|
|
| Sat, 02 May 2026 14:01:14 GMT |
The Art of Finding Critical Vulnerabilities: Where Curiosity Beat... |
vapt |
|
|
| Mon, 27 Apr 2026 02:01:01 GMT |
The Backend Engineer’s SSRF Playbook: Attack Vectors and Fixes ... |
ssrf |
|
|
| Fri, 01 May 2026 13:32:55 GMT |
I Mapped How Attackers Chain 5 API Vulnerabilities Into a Full Ad... |
idor |
|
|
| Mon, 17 Nov 2025 09:27:29 GMT |
200 reports, 11 valid bugs, 0 critical issues. Here’s everythin... |
vdp |
|
|
| Sat, 14 Mar 2026 01:59:36 GMT |
LFI/RFI |
lfi |
|
|
| Mon, 13 Apr 2026 03:31:01 GMT |
Google Dorks Google Ko Bana Do Apna Hacking Tool: Free Mein Bugs ... |
google-dork, github-dorking |
|
|
| Tue, 28 Apr 2026 18:20:28 GMT |
AI Can Now Discover and Execute Exploits — What Does That Mean? |
exploit |
|
|
| Sun, 26 Apr 2026 17:13:53 GMT |
DiceForge (RCE) Bugforge |
rce |
|
|
| Mon, 11 Dec 2023 18:17:01 GMT |
Exploiting a Log Poisoning. |
log-poisoning |
|
|
| Thu, 02 Apr 2026 12:05:48 GMT |
IoT Cihazlar: Evinizde ki Yabancı |
shodan |
|
|
| Fri, 24 Apr 2026 10:26:01 GMT |
¿Estás emocionado por el próximo partido entre FC Barcelona y ... |
bounty-program |
|
|
| Sat, 09 May 2026 14:20:52 GMT |
Laporan Praktikum Basis Data : Sub Query |
information-technology |
|
|
| Sat, 09 May 2026 15:38:54 GMT |
ISMS in Practice: Why Pragmatism Beats Perfectionism - A Field Re... |
information-security |
|
|
| Mon, 09 Mar 2026 18:49:55 GMT |
Walkthrough: Vulnerability Scanning w/ OpenVAS |
vulnerability-scanning |
|
|
| Mon, 13 Apr 2026 06:20:22 GMT |
Veeam Plaintext Credential Exposure PoC: From Local Access to Pri... |
security-research |
|
|
| Thu, 14 Aug 2025 10:08:18 GMT |
Predictive Analytics and Voice Technology: A Winning Combination ... |
vdp |
|
|
| Tue, 13 Jan 2026 13:27:13 GMT |
Hacking “Time�: When Critical Infrastructure Forgets to Set a... |
vulnerability-disclosure |
|
|
| Mon, 02 Feb 2026 17:05:37 GMT |
Lab: Web cache poisoning to exploit a DOM vulnerability via a cac... |
web-cache-poisoning |
|
|
| Mon, 27 Apr 2026 04:11:56 GMT |
Cloudflare R2 + Custom Domain |
file-upload |
|
|
| Wed, 22 Apr 2026 23:39:11 GMT |
Authentication bypass via unauthenticated JWT generation on a tel... |
shodan |
|
|
| Thu, 29 Jan 2026 05:03:15 GMT |
Subdomain Takeover: Understanding, Detecting, and Recovering from... |
subdomain-takeover |
|
|
| Sat, 09 May 2026 17:22:42 GMT |
The Quiet Grace of Moving on… |
vulnerability |
|
|
| Sat, 09 May 2026 12:27:48 GMT |
FirstBlood Lab — Full Exploitation Writeup Introduction |
penetration-testing |
|
|
| Thu, 04 Dec 2025 04:45:36 GMT |
What is Google Dorking? |
dorking |
|
|
| Sun, 26 Jan 2025 19:08:11 GMT |
Matrix strike’s back against honesty from a power stance |
web-pentest |
|
|
| Fri, 24 Apr 2026 15:44:54 GMT |
File Inclusion |
local-file-inclusion |
|
|
| Tue, 31 Mar 2026 08:17:14 GMT |
Exploiting OData Wildcards: How I Scraped Tesla’s Internal Empl... |
bugcrowd |
|
|
| Sat, 09 May 2026 06:35:19 GMT |
OWASP Application Security Risk 10:2025 A02 Security Misconfigura... |
application-security |
|
|
| Tue, 10 Feb 2026 23:04:46 GMT |
Effective Dorking Tools |
dorking |
|
|
| Fri, 01 May 2026 10:41:06 GMT |
From a Simple Image Upload to Account Takeover: Stored XSS via Fi... |
vapt |
|
|
| Sat, 11 Apr 2026 13:56:44 GMT |
Top Cybersecurity Tools for Beginners: A Complete List (2026) |K... |
cybersecurity-tools |
|
|
| Sat, 14 Mar 2026 18:06:12 GMT |
Web Security Series #3 — Discovering Credentials Using Cluster ... |
bug-bounty-hunting |
|
|
| Wed, 06 May 2026 22:28:25 GMT |
The New Architecture of Trust in an Era of Persistent Cyber Warfa... |
pentest |
|
|
| Thu, 07 May 2026 00:49:37 GMT |
I Built a Home Vulnerability Management Lab for $0 — Here’s W... |
cve |
|
|
| Fri, 10 Apr 2026 12:32:22 GMT |
How Soroban’s CAP-0066 Killed My LayerZero Finding |
bounty-program |
|
|
| Fri, 03 Apr 2026 08:30:09 GMT |
Inside The Vault Sentry — How We Detect and Stop API Key Leaks |
api-key |
|
|
| Wed, 06 May 2026 13:15:12 GMT |
Web Application Attack Detection and Alerting with Wazuh (XSS Use... |
xss-attack |
|
|
| Fri, 20 Mar 2026 11:44:04 GMT |
#Searchlight OSINT Writeup |
google-dorking |
|
|
| Sat, 07 Mar 2026 04:09:52 GMT |
Threat Intelligence Investigation — Dropbox Phishing Domain Ana... |
google-dorking |
|
|
| Thu, 07 May 2026 15:59:11 GMT |
CTF Solution: Information Disclosure and Privilege Escalation on ... |
information-disclosure |
|
|
| Thu, 07 May 2026 11:27:31 GMT |
�Full Account Takeover Through Unsafe Google Linking With Perma... |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Wed, 29 Apr 2026 14:47:41 GMT |
The Dorking Manifesto: Uncovering the Hidden Web |
google-dorking |
|
|
| Mon, 04 May 2026 07:35:39 GMT |
CPDoS via Content Negotiation Mechanism |
web-cache-poisoning |
|
|
| Wed, 21 Jan 2026 15:09:15 GMT |
Lab: Weak isolation on dual-use endpoint | Portswigger |
web-cache-poisoning |
|
|
| Sat, 09 May 2026 01:31:00 GMT |
Your Server Is Showing Everything It Shouldn’t -The Apache Dire... |
directory-listing |
|
|
| Fri, 03 Apr 2026 08:19:32 GMT |
Why API Key Security Should Be Your Startup’s First Priority |
api-key |
|
|
| Wed, 12 Feb 2025 22:46:35 GMT |
https://www.express.co.uk/life-style/property/2012927/cleaning-ch... |
web-pentest |
|
|
| Sat, 02 May 2026 13:19:31 GMT |
Understanding SSRF: Concepts, Patterns and Practical Exploitation |
ssrf |
|
|
| Mon, 04 May 2026 12:16:22 GMT |
Upload file and fill up HTML form with express multer backend |
file-upload |
|
|
| Mon, 30 Mar 2026 12:28:22 GMT |
API Access Explained: Everything You Need to Know to Get Started |
api-key |
|
|
| Sat, 09 May 2026 12:41:59 GMT |
The Weight of the “Worthy� Life: When Success Feels Like a Se... |
vulnerability |
|
|
| Sun, 17 Aug 2025 19:26:05 GMT |
ï·½ |
bug-bounty-program |
|
|
| Mon, 04 May 2026 10:31:01 GMT |
Breaking Down CVE-2026–31431 (“Copy Fail�): What You Need t... |
exploit |
|
|
| Mon, 04 May 2026 19:18:14 GMT |
LFI to RCE: Log Poisoning via PHP Sessions and Apache Logs |
local-file-inclusion |
|
|
| Thu, 23 Apr 2026 19:21:01 GMT |
Security Assessment: 23andMe Web Platform |
security-research |
|
|
| Wed, 01 Apr 2026 09:33:58 GMT |
How to earn VDS in Vadeus Network [Rewards Center] |
bounty-program |
|
|
| Sat, 09 May 2026 23:01:42 GMT |
Network Analysis: Malware Compromise — BTLO Lab Writeup |
security, cybersecurity |
|
|
| Sat, 09 May 2026 16:12:15 GMT |
URL’den Ekrana: Bir HTTP İsteğinin Anatomisi |
infosec |
|
|
| Thu, 07 May 2026 16:39:17 GMT |
Host Header Injection — How I Manipulated Session Cookie Domain... |
bugbounty-writeup |
|
|
| Sat, 28 Mar 2026 08:13:46 GMT |
How Exposed n8n Webhooks Become an Attack Surface |
shodan |
|
|
| Sat, 09 May 2026 15:54:09 GMT |
IDOR in Email Preference Management — Unauthenticated Access & ... |
bug-bounty, bugs, ethical-hacking |
|
|
| Sat, 09 May 2026 20:34:39 GMT |
Australia’s FinTech Crossroads: Why Cybersecurity and AI Govern... |
cyber-security-awareness |
|
|
| Wed, 11 Mar 2026 08:12:14 GMT |
The Bug Bounty Hunter Roadmap (2026): From Curious Beginner to Re... |
bug-bounty-hunting |
|
|
| Tue, 22 Apr 2025 10:38:20 GMT |
Trump’s Tariffs Cut Out Censys — ZoomEye Steps In Strong! |
zoomeye |
|
|
| Mon, 16 Feb 2026 14:31:00 GMT |
BOUNTY | HTB | Windows |Walkthrough | Write up |
bounties |
|
|
| Wed, 25 Feb 2026 00:40:05 GMT |
Icy “Doodle� Site | ATC CTF 2.0 | Google Dorking| CTFs |
google-dorking |
|
|
| Wed, 29 Apr 2026 20:01:01 GMT |
The Form Is Soft. The Substance Is Not. |
information-disclosure |
|
|
| Tue, 18 Nov 2025 18:12:40 GMT |
Dork Labs Awarded AWS Activate Startup Grant |
dorks |
|
|
| Fri, 10 Nov 2023 03:38:01 GMT |
Apache error.log advanced Log poisoning RCE |
log-poisoning |
|
|
| Sat, 07 Mar 2026 01:11:15 GMT |
The Silent Observer: A Deep Dive into Shodan Dorks for Security R... |
shodan |
|
|
| Tue, 28 Apr 2026 20:00:52 GMT |
Official Blind XSS Platform Update (2026) |
xss-bypass |
|
|
| Sat, 02 May 2026 14:24:34 GMT |
Analytic Tools |
cyber-sec |
|
|
| Sun, 12 Apr 2026 02:23:24 GMT |
WHEN "NOT A VULNERABILITY" GETS PATCHED IN 72 HOURS By Ahmed Bata... |
security-research |
|
|
| Sun, 12 Apr 2026 02:19:51 GMT |
WHEN "NOT A VULNERABILITY" GETS PATCHED IN 72 HOURS By Ahmed Bata... |
security-research |
|
|
| Sat, 09 May 2026 21:01:00 GMT |
My Friend Ran a Malicious Script on Her Mac |
hacking |
|
|
| Sat, 09 May 2026 18:06:10 GMT |
OverTheWire Bandit Walkthrough — Level 7 → 8 | 30-Day Cy... |
hacking |
|
|
| Mon, 04 May 2026 16:05:38 GMT |
CVE-2026–31431 — Privilege Escalation via AEAD Crypto Socket... |
exploit, cve |
|
|
| Mon, 04 May 2026 10:25:50 GMT |
IDOR | TryHackMe |
idor |
|
|
| Fri, 19 Sep 2025 07:40:16 GMT |
How I Tracked Our Clients’ Device Versions Without Direct Repor... |
zoomeye |
|
|
| Wed, 06 May 2026 10:01:38 GMT |
Best VAPT Service Provider in India | CERT-In Empanelled | ISO:... |
vapt |
|
|
| Sat, 09 May 2026 12:20:36 GMT |
How Getting Mogged Made Me Find a Client-Side Score Manipulation ... |
bug-bounty, web-security |
|
|
| Sat, 09 May 2026 15:01:01 GMT |
Hackeo masivo de portales Canvas impulsa nueva campaña de extors... |
information-technology, information-security, cyber-security-awareness |
|
|
| Sat, 09 May 2026 02:21:32 GMT |
Jacko | Proving Grounds | Walkthrough | OSCP Preparation |
bug-bounty-tips |
|
|
| Mon, 06 Apr 2026 13:55:29 GMT |
The 7 Golden Rules of Vulnerability Scanning |
vulnerability-scanning |
|
|
| Fri, 01 May 2026 20:49:29 GMT |
Stop Hardcoding Bytes: |
file-upload |
|
|
| Fri, 29 Aug 2025 04:43:21 GMT |
9. The Secret Power of Google Dorking |
dorking |
|
|
| Wed, 18 Mar 2026 10:03:26 GMT |
Web Security Series #7 — Exploiting Blind SQL Injection via Ses... |
bug-bounty-hunting |
|
|
| Mon, 27 Apr 2026 06:17:15 GMT |
Upload รูปภาพขึ้น Google Cloud Storage �บ... |
file-upload |
|
|
| Sun, 08 Mar 2026 06:50:53 GMT |
XSS Inbound Attack: I Didn’t Steal Your Cookie. I Stole Your So... |
xss-bypass |
|
|
| Sat, 09 May 2026 00:06:00 GMT |
FunboxEasy — CSE Bookstore File Upload + sudo time GTFObins to ... |
pentesting |
|
|
| Sun, 05 Apr 2026 20:11:41 GMT |
I Tried Logging In… and Accidentally Did Responsible Disclosure... |
vdp |
|
|
| Thu, 30 Apr 2026 13:32:10 GMT |
TryHack3M: Bricks Heist | TryHackMe Challenge Walkthrough |
rce |
|
|
| Sun, 26 Apr 2026 22:37:30 GMT |
Running a virtual iPhone for security research, no Jailbreak Requ... |
security-research |
|
|
| Tue, 14 Apr 2026 17:24:57 GMT |
PAM Cleanup in Practice: Discovery, Risk Triage and Lifecycle Gov... |
cyber-sec |
|
|
| Wed, 19 Nov 2025 19:44:02 GMT |
The Pulse of Liquidity: How DorkFi’s Interest Rates Adapt in Re... |
dorks |
|
|
| Tue, 21 Apr 2026 10:47:26 GMT |
Validating My External Attack Surface: A Production-Ready Nuclei ... |
vulnerability-scanning |
|
|
| Sat, 09 May 2026 04:29:21 GMT |
How an “Out-of-Scope� XSS Led to a 300 CHF Bounty |
bug-bounty-writeup, xss-vulnerability |
|
|
| Mon, 27 Apr 2026 18:53:00 GMT |
We Are the Ones We Have Been Waiting For |
information-disclosure |
|
|
| Wed, 06 May 2026 23:46:09 GMT |
HTB File Inclusion Skills Assessment — From LFI to RCE (Full Wa... |
local-file-inclusion |
|
|
| Fri, 08 May 2026 05:05:14 GMT |
VAPT Services Explained, What Every Company Should Know |
vapt |
|
|
| Thu, 19 Mar 2026 22:19:50 GMT |
Vulnerability Scanning 101: How to Manage Your Vulnerabilities |
vulnerability-scanning |
|
|
| Fri, 08 May 2026 22:12:35 GMT |
Write-up — Blind SSRF with Shellshock Exploitation |
ssrf |
|
|
| Fri, 11 Jul 2025 16:20:24 GMT |
PC WORX: The Hidden Risk in Your Industrial Network |
censys |
|
|
| Thu, 02 Apr 2026 20:20:02 GMT |
What a Real Autonomous Recon Pipeline Looks Like |
recon |
|
|
| Mon, 02 Mar 2026 00:00:27 GMT |
TakeOver | TryHackMe Write-up |
subdomain-takeover |
|
|
| Wed, 03 Dec 2025 23:26:26 GMT |
TryHackMe-TakeOver-WriteUp |
subdomain-takeover |
|
|
| Sun, 03 May 2026 03:59:58 GMT |
Metaspliotable 2 via ftp |
exploit |
|
|
| Wed, 29 Apr 2026 04:45:44 GMT |
How I Found My First RCE — CVE-2026–37748 |
remote-code-execution |
|
|
| Fri, 17 Apr 2026 18:21:00 GMT |
The 12-Character Backdoor: How One Static Key in All-in-One WP Mi... |
remote-code-execution |
|
|
| Tue, 05 May 2026 06:15:31 GMT |
They Rejected My Bugs. I Came Back Same Day With 9 More. |
bugs |
|
|
| Fri, 08 May 2026 05:58:10 GMT |
An Easy IDOR on a Banking App (Hosted on Azure — Laternal Movem... |
hackerone |
|
|
| Thu, 05 Mar 2026 21:41:26 GMT |
Finding a P1 in NASA: The Power of Google Dorking |
google-dork |
|
|
| Tue, 21 Apr 2026 14:42:50 GMT |
Web Security Series # 16— Exploiting Local File Inclusion (LFI) |
file-inclusion |
|
|
| Sat, 09 May 2026 10:01:40 GMT |
Shodan.io | TryHackMe |
shodan |
|
|
| Tue, 24 Feb 2026 07:38:15 GMT |
Glassdoor’s IDOR vulnerability to retrieve email addresses of a... |
bounty-program |
|
|
| Thu, 30 Apr 2026 12:20:17 GMT |
Lab: Reflected XSS into HTML context with nothing encoded |
xss-attack |
|
|
| Sun, 03 May 2026 07:35:55 GMT |
Your AI Stack is Publicly Searchable |
bugbounty-writeup |
|
|
| Sun, 24 Aug 2025 20:18:55 GMT |
How I found an Account Lockout Vulnerability Without Any Tools |
bug-bounty-program |
|
|
| Wed, 14 Jan 2026 09:06:30 GMT |
Lab: Web cache poisoning via an unkeyed query string | Portswige... |
web-cache-poisoning |
|
|
| Sat, 09 May 2026 10:04:07 GMT |
I Don’t Think I’m Healing, I’m Just Learning How to Hide It... |
vulnerability |
|
|
| Mon, 04 May 2026 12:01:06 GMT |
Recon Is Never Useless: From a Simple Info Leak to Full Administr... |
vapt |
|
|
| Thu, 19 Mar 2026 22:46:44 GMT |
How I Earned $76,000 From a Single Program on Bugcrowd |
bugcrowd |
|
|
| Fri, 01 May 2026 12:41:01 GMT |
How I Found Sensitive Data Exposure on Screenly’s API — A Bug... |
bugbounty-writeup, information-disclosure |
|
|
| Tue, 05 May 2026 10:09:45 GMT |
OTP Is Not Always Secure: From a Simple Email Input to Account Co... |
vapt |
|
|
| Wed, 06 May 2026 10:26:18 GMT |
Upload Vulnerabilities | TryHackMe |
remote-code-execution |
|
|
| Mon, 04 May 2026 18:31:01 GMT |
Nmap: How Hackers “See� Your Network Before Attacking It |
vulnerability-scanning |
|
|
| Tue, 28 Apr 2026 12:31:02 GMT |
How to Upload Files in Next.js (Images & Documents) |
file-upload |
|
|
| Fri, 27 Mar 2026 11:01:08 GMT |
Finding XSS Through HTML Injection — Without Fuzzing Tools |
xss-bypass |
|
|
| Sat, 28 Feb 2026 21:11:37 GMT |
I Shouldn’t Be Sharing This: The 2026 Google Dork Bible That St... |
google-dork |
|
|
| Tue, 14 Apr 2026 04:51:21 GMT |
Top Cybersecurity Tools Experts Use |
cybersecurity-tools |
|
|
| Sun, 21 Sep 2025 07:02:30 GMT |
Affordable but Vulnerable? The Dark Side of CMORE HMI |
censys |
|
|
| Sat, 09 May 2026 20:12:07 GMT |
THE ART OF FINDING HIDDEN THINGS IN BUG BOUNTY HUNTING (regex, pi... |
penetration-testing, infosec, web-security |
|
|
| Tue, 14 Apr 2026 18:22:58 GMT |
File Upload Vulnerabilities |
remote-code-execution |
|
|
| Wed, 22 Oct 2025 14:11:32 GMT |
Mastering Subdomain Enumeration: A Beginner’s Guide to Expandin... |
subdomain-enumeration |
|
|
| Tue, 05 May 2026 17:12:25 GMT |
Escalating Self-XSS with Disk Cache |
xss-attack |
|
|
| Mon, 04 May 2026 07:36:49 GMT |
From Btech to Cybersecurity Engineer -Premkumar Reddy |
vapt |
|
|
| Wed, 18 Feb 2026 21:56:48 GMT |
Chapter 14: Subdomain Takeover |
subdomain-takeover |
|
|
| Tue, 05 May 2026 11:11:00 GMT |
Zero-Click ATO: How a Single Accent Mark Led to Account Takeovers |
hackerone |
|
|
| Wed, 15 Apr 2026 22:10:26 GMT |
All It Took Was a Negative Number: A Price Manipulation Story | ... |
bug-bounty-hunter |
|
|
| Sun, 19 Apr 2026 11:31:54 GMT |
Search Engine Discovery & Google Dorking: Turning Google into a R... |
google-dorking |
|
|
| Tue, 14 Apr 2026 13:07:05 GMT |
My “Gemini� Is Named Mike |
dorks |
|
|
| Mon, 06 Apr 2026 18:35:09 GMT |
Manual vs Automated Security Testing in the Age of AI: A Security... |
vulnerability-scanning |
|
|
| Tue, 24 Mar 2026 17:48:00 GMT |
The Ultimate Bug Bounty Course: From Zero to Advanced Hacker 1 |
bug-bounty-hunting |
|
|
| Thu, 28 Sep 2023 23:05:39 GMT |
Archangel — TryHackMe |
log-poisoning |
|
|
| Wed, 16 Jul 2025 12:07:42 GMT |
Hackers Love This 1979 Protocol (Because It Can’t Defend Itself... |
censys |
|
|
| Mon, 20 Apr 2026 05:11:01 GMT |
Stop Hardcoding Your API Keys |
api-key |
|
|
| Tue, 03 Feb 2026 17:12:47 GMT |
My First Week: 3 Business Logic Bugs in Major E-Commerce |
bug-bounty-program |
|
|
| Sat, 09 May 2026 17:12:43 GMT |
Phishing Email Analysis SOC Analyst Guide Part-5 Basic Email Anal... |
cyber-security-awareness |
|
|
| Sun, 26 Apr 2026 16:31:24 GMT |
��♂� How I Find Critical Data Leaks Using Just Google Sea... |
google-dork |
|
|
| Wed, 08 Apr 2026 13:31:24 GMT |
Hunting on Flipkart: When Product Specs Become Payloads |
google-dork |
|
|
| Sat, 28 Feb 2026 09:31:10 GMT |
Google Dork’un Pentest Yaşam Döngüsündeki Yeri |
google-dork |
|
|
| Tue, 18 Nov 2025 13:26:47 GMT |
GitHub Dorking: The Hunter’s Guide to Finding Secrets in Public... |
github-dorking |
|
|
| Tue, 05 May 2026 04:01:23 GMT |
How I Obtained CVEs in WordPress Plugins Using Static Analysis En... |
cve |
|
|
| Mon, 04 May 2026 17:36:51 GMT |
The Complete Guide to Managed Cyber Defense: Protecting Your Busi... |
cyber-sec |
|
|
| Sat, 09 May 2026 18:11:44 GMT |
CTI-Led Defensive Strategy for a Cellular Provider (Case Study) |
information-security |
|
|
| Fri, 17 Apr 2026 19:01:54 GMT |
The Ultimate Guide to Wayback Machine Dorking for Deleted Leaks |
google-dorking, dorking |
|
|
| Fri, 08 May 2026 04:58:23 GMT |
Write-Up: BugForge Weekly Challenge — FurHire with SSRF |
ssrf |
|
|
| Sat, 09 May 2026 22:19:36 GMT |
How to Detect Persistence Mechanisms with Elastic SIEM: SOC Analy... |
cybersecurity, information-technology, information-security |
|
|
| Sat, 09 May 2026 21:01:51 GMT |
How Attackers Abuse Active Directory's Kerberos, By an Attacker (... |
penetration-testing |
|
|
| Fri, 08 May 2026 17:51:46 GMT |
Exploiting ProFTPD 1.3.5 Remote Code Execution (CVE-2015–3306) ... |
remote-code-execution |
|
|
| Mon, 03 Nov 2025 19:42:12 GMT |
Announcing DorkFi Go-Live Date: Liquidity is Coming |
dorks |
|
|
| Wed, 23 Jul 2025 15:15:01 GMT |
TryHackMe Include walkthrough: SSRF, log poisoning & LFI2RCE, wit... |
log-poisoning |
|
|
| Fri, 19 Dec 2025 20:23:57 GMT |
How I Found an Unauthenticated XXE That Allowed Arbitrary File Re... |
vulnerability-disclosure |
|
|
| Thu, 02 Apr 2026 18:59:50 GMT |
File Inclusion (LFI/RFI) — Extracting Sensitive Data from confi... |
file-inclusion |
|
|
| Fri, 08 May 2026 15:17:10 GMT |
How I Hit the Top 1.5% of a 17,000-Developer Challenge: The “In... |
web-security |
|
|
| Fri, 08 May 2026 17:03:09 GMT |
GMX V2 is Mathematically Insolvent Two independent critical vulne... |
bugs |
|
|
| Mon, 04 May 2026 18:17:58 GMT |
SSRF to Remote Java SPI Plugin Injection leading to RCE |
rce, ssrf |
|
|
| Sat, 25 Jan 2025 23:20:10 GMT |
Full GitHub Dorking guide: for OSINT and BugBounty (Reconnaissanc... |
github-dorking |
|
|
| Sat, 20 Dec 2025 18:21:40 GMT |
N0aziXss SubSpectre: Advanced Subdomain Discovery with Intelligen... |
subdomain-enumeration |
|
|
| Tue, 05 Aug 2025 00:19:11 GMT |
Breaking Recon with AMASS |
subdomain-enumeration |
|
|
| Fri, 24 Apr 2026 06:09:47 GMT |
Is Web Filtering Quietly Controlling Your Online Experience Witho... |
cybersecurity-tools |
|
|
| Mon, 09 Mar 2026 06:56:21 GMT |
File Inclusion Vulnerability: Easy concept explanation |
file-inclusion |
|
|
| Thu, 09 Apr 2026 15:25:42 GMT |
The Real AI Concern Is Not Art or Jobs, It Is Cybersecurity |
cyber-sec |
|
|
| Thu, 30 Apr 2026 20:08:40 GMT |
IDOR via Weak JWT Validation Leading to Unauthorized Data Access |
information-disclosure, idor |
|
|
| Tue, 23 Dec 2025 06:58:24 GMT |
How I Found Vulnerabilities in NASA and Got into the Hall of Fame |
vulnerability-disclosure |
|
|
| Fri, 09 Jan 2026 05:50:02 GMT |
Caches, Edge, and Exploits |
web-cache-poisoning |
|
|
| Sat, 09 May 2026 02:26:22 GMT |
How I Discovered a Reflected XSS Vulnerability on a Major German ... |
xss-attack, cross-site-scripting, xss-vulnerability, xss-bypass |
|
|
| Tue, 05 May 2026 16:22:09 GMT |
One curl Command Returned Server Credentials — Here Is What I L... |
bugbounty-writeup |
|
|
| Tue, 05 May 2026 22:33:08 GMT |
CVE‑2026‑22679: Weaver E‑cology RCE |
rce |
|
|
| Thu, 16 Apr 2026 14:58:15 GMT |
April 2026 Microsoft Security Update Cycle |
rce |
|
|
| Sat, 11 Apr 2026 09:59:14 GMT |
The Symmetry of Recon: Active vs. Passive Discovery in Bug Bounty |
shodan |
|
|
| Fri, 20 Feb 2026 14:44:02 GMT |
XSS Attack Methodology: How Attackers Actually Exploit Your Brows... |
xss-bypass |
|
|
| Sat, 25 Apr 2026 23:23:58 GMT |
How to Avoid Hardcoding API Keys in mcp.json |
api-key |
|
|
| Sat, 09 May 2026 17:50:02 GMT |
Canvas Hacked |
hacking |
|
|
| Thu, 07 May 2026 23:40:39 GMT |
A Critical IDOR That Allowed Me to Delete Any User Account |
hackerone, bugcrowd |
|
|
| Mon, 27 Jan 2025 16:51:28 GMT |
The man who suffered 11 years in hell for freedom has now been fr... |
web-pentest |
|
|
| Fri, 28 Jun 2024 14:51:14 GMT |
X-Forwarded HTTP header-ləri : Qısa izah |
log-poisoning |
|
|
| Tue, 05 May 2026 15:17:09 GMT |
732 Bytes to Root: How Copy Fail Silently Affects Linux Systems |
cve |
|
|
| Tue, 28 Apr 2026 07:24:56 GMT |
Cross-Site Scripting (XSS): Dari Celah Sederhana ke Ancaman Seriu... |
cross-site-scripting |
|
|
| Fri, 08 May 2026 08:02:20 GMT |
Unauthenticated RCE via WebLogic WLS-WSAT (CVE-2019–2725) |
application-security, remote-code-execution |
|
|
| Tue, 03 Mar 2026 05:34:39 GMT |
Documenting my journey. |
cyber-sec |
|
|
| Thu, 07 May 2026 06:41:01 GMT |
Github Dorking |
dorking, github-dorking |
|
|
| Wed, 10 Dec 2025 12:06:41 GMT |
Strengthening Web3 Security: Recent Vulnerability Findings from Y... |
vulnerability-disclosure |
|
|
| Fri, 25 Jul 2025 16:41:01 GMT |
� SubDNS-UI: Build Your Own Subdomain + DNS Enumerator with a C... |
subdomain-enumeration |
|
|
| Fri, 01 May 2026 17:43:46 GMT |
TryHackMe (THM) MD2PDF Walkthrough |
ssrf |
|
|
| Fri, 27 Mar 2026 03:29:10 GMT |
TryHackMe — File Inclusion (Walkthrough) |
file-inclusion |
|
|
| Tue, 05 Dec 2023 07:54:40 GMT |
LFI via SMTP log poisoning |
log-poisoning |
|
|
| Fri, 17 Apr 2026 04:53:23 GMT |
How I Found an Exposed Google Maps API Key on a Global Brand’s ... |
vdp |
|
|
| Mon, 27 Apr 2026 07:12:30 GMT |
One Weird Query String That Let Anyone Hijack Any Account in Roc... |
bounties |
|
|
| Sat, 09 May 2026 07:53:29 GMT |
PRAKTIK MANDIRI: Simulasi Pemulihan Sistem Pasca Insiden Keamanan... |
infosec |
|
|
| Fri, 08 May 2026 14:43:48 GMT |
Building a Deterministic Active Directory Attack Correlation Engi... |
pentesting |
|
|
| Thu, 23 Apr 2026 13:57:34 GMT |
Address Poisoning Attacks: How Hackers Exploit Your Copy-Paste Ha... |
exploit |
|
|
| Wed, 06 May 2026 13:16:00 GMT |
The Physics Equations That AI Still Gets Wrong — And Why That's... |
bugs |
|
|
| Thu, 23 Apr 2026 00:58:15 GMT |
CSP bypass and Dangling Markup Xss |
cross-site-scripting |
|
|
| Thu, 30 Apr 2026 02:04:17 GMT |
From Recon to Letter of Recognition | NASA VDP |
bugcrowd |
|
|
| Fri, 01 May 2026 18:07:44 GMT |
How I Turned $3 Into 8 Paid Bugs |
bug-bounty-hunter |
|
|
| Tue, 05 May 2026 18:07:02 GMT |
LAB: Insecure Direct Object References (IDOR) |
idor |
|
|
| Thu, 16 Apr 2026 18:45:06 GMT |
PENTEST: A arte da invasão ética e o caminho para a Segurança ... |
pentest |
|
|
| Sun, 21 Sep 2025 03:55:56 GMT |
Is it easy to discover a critical vulnerability [P1]Â ? |
directory-listing |
|
|
| Fri, 08 May 2026 22:18:35 GMT |
OSCP Dailies: THM — Attacktive Directory — Day 2 |
pentesting |
|
|
| Sun, 03 May 2026 15:05:29 GMT |
File Upload and Download in Spring Boot (MultipartFile + Resource... |
file-upload |
|
|
| Tue, 05 May 2026 20:34:26 GMT |
Milesight IP Camera Vulnerabilities: How 5 Critical CVEs Left 14,... |
cve |
|
|
| Sat, 09 May 2026 19:56:00 GMT |
Building an Autonomous Sentinel: Shielding Mantle DeFi from Round... |
security |
|
|
| Sat, 09 May 2026 00:37:27 GMT |
RHC en contexto: Alineando un nuevo paradigma defensivo con los e... |
web-security |
|
|
| Mon, 20 Apr 2026 01:34:13 GMT |
I Asked AI To Hack My PHP App. It Did. Here’s How I Fixed It. |
cross-site-scripting |
|
|
| Sat, 04 Apr 2026 17:32:35 GMT |
How I Earned $200 in 5 Minutes Using a Simple Broken Link Hijack... |
bug-bounty-hunter |
|
|
| Sat, 09 May 2026 18:15:43 GMT |
“5 Beginner Mistakes That Wasted My Time While Choosing Bug Bou... |
bug-bounty, web-security, bug-bounty-tips, ethical-hacking |
|
|
| Sat, 09 May 2026 20:03:21 GMT |
We and our vulnerabilities. |
vulnerability |
|
|
| Sat, 09 May 2026 00:06:29 GMT |
Login Page Testing Checklist: 15 Important Test Cases Every Secur... |
bug-bounty-writeup, application-security |
|
|
| Tue, 21 Apr 2026 17:44:36 GMT |
TuesdayTool 44: ThreatCaddy: A Modern Approach to Threat Intellig... |
cybersecurity-tools |
|
|
| Sat, 25 Apr 2026 14:46:05 GMT |
File Inclusion— Skills Assesment (HTB) |
file-inclusion |
|
|
| Thu, 14 Aug 2025 10:54:38 GMT |
Unlocking the Hidden Power of Search Engines |
censys |
|
|
| Wed, 08 Apr 2026 19:31:38 GMT |
Pentester Labs Recon 00 write up |
recon |
|
|
| Sat, 28 Mar 2026 06:56:48 GMT |
The Definitive Guide to Secret Management in Python AI Projects |
api-key |
|
|
| Sat, 09 May 2026 22:22:11 GMT |
“Scam Likely: The Rogues Texting, DM’ing, and Gaming Their Wa... |
cybersecurity |
|
|
| Sat, 09 May 2026 18:13:40 GMT |
Overwatch HTB — HackTheBox Walkthrough | By Alham Rizvi |
hacking |
|
|
| Tue, 05 May 2026 14:28:15 GMT |
Function Confution that leads too Full server Dirs disccluseed |
bugs |
|
|
| Sat, 09 May 2026 08:12:34 GMT |
TryHackMe (THM) Basic Pentesting Walkthrough |
pentesting |
|
|
| Tue, 21 Apr 2026 04:56:55 GMT |
Before You Test Anything, Understand What the System Is Protectin... |
bug-bounty-hunter |
|
|
| Thu, 11 Sep 2025 22:20:14 GMT |
It’s Coming: DorkFi Delivers PreFi Rewards Surge |
dorking |
|
|
| Thu, 30 Apr 2026 22:03:21 GMT |
How to learn Autopsy quickly to pass any exams |
cybersecurity-tools |
|
|
| Sun, 15 Mar 2026 16:45:35 GMT |
Web Security Series #4 — Discovering Unauthorized Resources via... |
bug-bounty-hunting |
|
|
| Fri, 27 Mar 2026 11:58:55 GMT |
Why Beginners Fail in Bug Bounty (And How to Fix It in 2026) |
bug-bounty-hunter |
|
|
| Thu, 09 Oct 2025 18:33:05 GMT |
0-click Account Takeover via Punycode |
bug-bounty-program |
|
|
| Thu, 20 Nov 2025 09:45:04 GMT |
Timber Doors in Surrey: Style, Durability, and Value Explained |
dorking |
|
|
| Fri, 03 Apr 2026 23:30:20 GMT |
Security Advisory: QuickLaunch SSO Platform — Unauthenticated C... |
information-disclosure |
|
|
| Fri, 01 May 2026 05:49:29 GMT |
SERVER-SIDE REQUEST FORGERY (SSRF) in crAPI |
ssrf |
|
|
| Mon, 30 Mar 2026 06:03:13 GMT |
Why Business Directory Listings Are the Secret Weapon of Off-Page... |
directory-listing |
|
|
| Thu, 07 May 2026 07:48:49 GMT |
SSRF: Making Servers Attack Themselves |
ssrf |
|
|
| Sun, 03 May 2026 11:01:27 GMT |
Parameter Index Manipulation Leading to Unauthorized Field Inject... |
hackerone |
|
|
| Fri, 08 May 2026 16:20:05 GMT |
Giddy, BCE Token, and Resolv Exploits: $27M Lost to Signature Val... |
exploit |
|
|
| Thu, 19 Feb 2026 12:53:45 GMT |
Lab: Web cache poisoning via HTTP/2 request tunnelling | Portswi... |
web-cache-poisoning |
|
|
| Wed, 18 Feb 2026 01:09:03 GMT |
cURL’s Bug Bounty Is Dead. AI Killed It. |
bounty-program |
|
|
| Thu, 08 Jan 2026 09:02:50 GMT |
osint-Forgotten Ruins bounty $$ |
bounties |
|
|
| Sat, 18 Apr 2026 05:07:38 GMT |
We’re About to Stop Trusting What We See Online — And AI Is t... |
cyber-sec |
|
|
| Sat, 09 May 2026 17:33:49 GMT |
Love letters to cybersecurity part 1 : doctors & diagnoses |
vulnerability |
|
|
| Sat, 09 May 2026 13:09:43 GMT |
WebDAV Zafiyeti ve Sudo Yanlış Yapılandırması ile Sisteme SÄ... |
penetration-testing |
|
|
| Mon, 04 May 2026 09:31:01 GMT |
Love Letter Locker | TryHackMe Write-up |
idor |
|
|
| Fri, 08 May 2026 16:33:53 GMT |
TryHackMe | CVE-2026–31431: Copy-Fail | WriteUp |
cve |
|
|
| Tue, 05 May 2026 13:45:34 GMT |
CVE-2026–7791: Amazon WorkSpaces’de Gizlenen Ayrıcalık Yük... |
cve |
|
|
| Thu, 12 Mar 2026 18:45:23 GMT |
Pulse-Zero: Atomic Memory Slicing and Sub-Layer Evasion via x64 A... |
cyber-sec |
|
|
| Sat, 09 May 2026 18:11:23 GMT |
Guardians of the Horizon: US Air Force F-16s and the 2026 Middle ... |
security |
|
|
| Sat, 09 May 2026 13:03:12 GMT |
Brooklyn Nine-Nine |
infosec, ethical-hacking |
|
|
| Fri, 08 May 2026 08:20:42 GMT |
Reverse Engineering Web Apps & APIs 101 |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Thu, 30 Apr 2026 15:04:04 GMT |
I Almost Scrolled Past This URL… Then I Got Curious |
local-file-inclusion, lfi |
|
|
| Sat, 09 May 2026 16:20:36 GMT |
TryHackMe Walkthrough: CVE-2026–31431 — Copy-Fail |
cve |
|
|
| Fri, 06 Mar 2026 12:01:01 GMT |
Salà de compras y terminé en Roma |
bounty-program |
|
|
| Sat, 09 May 2026 18:36:00 GMT |
Israeli Prime Minister Netanyahu Vows No Deal with Iran Until Its... |
security |
|
|
| Sat, 09 May 2026 09:16:41 GMT |
Why Website Security Is a Business Priority in 2026 |
web-security |
|
|
| Fri, 08 May 2026 20:28:49 GMT |
The UFO Files Were Never the Real Story |
information-disclosure |
|
|
| Thu, 07 May 2026 13:00:05 GMT |
When the Frontend Lies: How One Blind API Endpoint Could Bring Do... |
bug-bounty-tips |
|
|
| Sat, 02 May 2026 14:02:00 GMT |
I Received an Official Bug Bounty Certificate from a Major Paymen... |
bugbounty-writeup |
|
|
| Mon, 16 Mar 2026 14:32:42 GMT |
Web Security Series #5 — Exploiting Broken Access Control via T... |
bug-bounty-hunting |
|
|
| Sat, 09 May 2026 17:48:15 GMT |
Turning Small Clues Into Big Bugs — The Details Most Hunters I... |
bug-bounty, hacking |
|
|
| Sat, 09 May 2026 07:32:56 GMT |
Git Version Control in Bug Bounty Hunting + Note Tracking with Ob... |
bug-bounty-tips |
|
|
| Fri, 01 May 2026 15:14:40 GMT |
Stored XSS to Privilege Escalation in Azuriom CMS — When “Tru... |
cross-site-scripting |
|
|
| Sat, 09 May 2026 12:35:26 GMT |
Anthropic’s CEO Says You Have 6 to 12 Months Before This Gets V... |
cyber-security-awareness |
|
|
| Thu, 12 Mar 2026 18:11:47 GMT |
A Simple P4 Bug That Ended as Duplicate |
bug-bounty-hunting |
|
|
| Wed, 29 Apr 2026 14:14:58 GMT |
Part 2Â : Cross-Site Scripting (XSS) |
xss-vulnerability, xss-bypass |
|
|
| Tue, 11 Nov 2025 16:43:14 GMT |
Beyond Google: Navigating the Hidden Internet with Shodan and Cen... |
censys |
|
|
| Fri, 08 May 2026 19:31:23 GMT |
HTB:Cicada |
pentesting |
|
|
| Sat, 09 May 2026 12:13:17 GMT |
Cognizant Cuts 15K Roles Globally!! With Corporate Magic, they ca... |
information-technology |
|
|
| Wed, 29 Apr 2026 14:32:10 GMT |
Self-XSS + CSRF Leading to Account Takeover (50-Character Payload... |
xss-attack, bugbounty-writeup |
|
|
| Sat, 09 May 2026 14:01:04 GMT |
200 Followers. Thank You. Here’s What I’m Doing About It. |
information-security, cyber-security-awareness |
|
|
| Fri, 08 May 2026 13:04:42 GMT |
Lifecycle Operations & Metrics That Matter |
application-security |
|
|
| Mon, 04 May 2026 16:15:17 GMT |
CVE-2021–42013 Apache HTTP Server 2.4.49 2.4.50 Remote Code Exe... |
cve |
|
|
| Fri, 01 Aug 2025 06:17:06 GMT |
15,000 Critical Systems Are Exposed — Thanks to This Outdat... |
censys |
|
|
| Fri, 23 May 2025 06:02:53 GMT |
Search Skills |
censys |
|
|
| Sat, 09 May 2026 12:58:23 GMT |
SQL Injection Demystified: From Magic Passwords to Out-of-Band Ex... |
web-security |
|
|
| Fri, 17 Apr 2026 15:51:57 GMT |
The 2026 Shodan Dork Bible: Finding Exposed Jenkins, Grafana, and... |
google-dork, shodan |
|
|
| Fri, 08 May 2026 09:52:18 GMT |
When Bug Bounty Hunting Hit Me Back: How Losing $500 Led Me to a ... |
web-cache-poisoning |
|
|
| Sat, 04 Apr 2026 04:41:46 GMT |
OpenTofu Security Scanner: How to Catch Misconfigurations Before ... |
vulnerability-scanning |
|
|
| Fri, 08 May 2026 08:14:59 GMT |
How a Bus That Left 2 Minutes Early Led Me to an IDOR Exposing Th... |
idor |
|
|
| Sun, 05 Apr 2026 08:08:21 GMT |
How I Built an Automated Recon Pipeline for Bug Bounty Hunting |
recon |
|
|
| Sat, 09 May 2026 10:09:47 GMT |
You Don’t Need to Be a Hacker to Get Paid Like One |
bug-bounty-tips |
|
|
| Fri, 20 Mar 2026 23:01:01 GMT |
How I Automated Google Dorking with a Simple Bookmarklet |
google-dorking |
|
|
| Sat, 02 May 2026 07:21:38 GMT |
TryHackMe (THM) Agent T Walkthrough |
rce |
|
|
| Tue, 28 Apr 2026 21:23:12 GMT |
Prototype Pollution |
xss-vulnerability |
|
|