• Home
  • About Us!
  • Team Member
  • CTF

Bugbounty

  • Bugbounty

Local file read via XSS using PDF generate functionality

Posted on June 5, 2020June 26, 2020by admin

Hello InfoSec elites, I’m going to share a story about how I escalated a low severity bug into a critical one. I was taking a look at different functionalities of one of the program and it had a Collab feature where we can make notes and share with others. There was an option to export […]

Read More
14 Comments
  • Bugbounty
  • ...
    • Tools

Road to Recon with EchoPwn.sh

Posted on April 13, 2020June 2, 2020by admin

This is a recon tool which allows you to discover the subdomains used by a target web application on both client and server side. Afterwards, it runs dirsearch on the resulted text file. It can also scan for open ports using NMAP and finds hidden parameters on every live Host. Summary: Hello everyone, in this […]

Read More
8 Comments
  • Bugbounty
  • ...
    • iOS

iOS Testing Lab Setup Guide – Part I

Posted on April 9, 2020June 1, 2020by admin

This post is about IOS Lab Setup. In this you will learn how to jailbreak iPhone and start the Pentesting.

Read More
1 Comment
  • Bugbounty
  • ...
    • CTF

Yogosha Hackitivist Challenge 2019

Posted on April 8, 2020April 8, 2020by admin

I started with hackitivist1 and found that the provided link was vulnerable to blind SQLI, so I started digging more into it. As you can see in the picture below (Figure 1) that after running SQLMAP, I was able to find the database. And then after, I found the username, password, and secret key Unfortunately, […]

Read More
No comments yet

Recent Posts

  • HTB OpenkeyS Writeup
  • HTB BUFF Writeup
  • C|EH Practical Review and Guide
  • Local file read via XSS using PDF generate functionality
  • CTF Lab

Categories

  • Bugbounty
  • CTF
  • HTB
  • iOS
  • Tools
  • Uncategorized
By hackers Theme by Colorlib Powered by WordPress