In this post, I cover how I discovered a CI/CD misconfiguration in the Release Drafter GitHub action and demonstrated how it could have directly impacted a Google owned open-source repository (and many more!) that used it by tag instead of SHA.| Adnan Khan's Blog
In just over a week, I’ll be speaking at Black Hat 2024 and DEF CON 32 along with my co-presenter, John Stawinski. We’re going to share our research on Self-Hosted GitHub Runner attacks…| Adnan Khan's Blog
| Harel Security Research
Here is how I was able to poison the cache of thousands of pages in Glassdoor with reflected & stored XSS Introduction| Harel Security Research
GitHub Actions caching has some insecure design decisions that allow for some unique attacks. It’s considered working as intended, but there are many ways it can go wrong. Learn how I identif…| Adnan Khan's Blog
本稿では、ポッドキャスト「Bug Bounty JP Podcast (BBJP_Podcast)」について紹介します。| blog of morioka12
A blog post about some post exploitation scenarios with MySQL, MSSQL, PostgreSQL and Oracle that use SQL Injection to make network requests resulting in Server Side Request Forgery/Cross Site Port Attacks.| i break software - My work with different software, bug hunting and interesti...
(Update: The talk recording is now up on YouTube, latest links to related content in this tweet)| /dev/alias – Hack. Dev. Transcend.
Renewal paper of my GIAC Web Application Penetration Tester certification:| Silent Signal Techblog
本稿では、バグバウンティにおけるモバイルアプリケーションの脆弱性報告の事例についてまとめて紹介します。| blog of morioka12
本稿では、バグバウンティで実際に報告されている危険度が Critical (致命的)な Web アプリケーションの脆弱性について事例をもとに紹介します。| blog of morioka12
本稿では、バグバウンティなどの脆弱性調査で使える、おすすめのブラウザの拡張機能を10個紹介します。| blog of morioka12
本稿では、バグバウンティなどの脆弱性調査で行う、JavaScript の静的解析と動的解析についてまとめて紹介します。| blog of morioka12
本稿では、バグバウンティなどの脆弱性調査でよく使われる、おすすめのツールを10個紹介します。| blog of morioka12
本稿では、バグバウンティなどの脆弱性調査でよく使われる Burp Suite にある拡張機能で、おすすめの Extensions を10個紹介します。| blog of morioka12
本稿では、HackerOne などのバグバウンティプラットフォームで脆弱性を探す Bug Bounty Hunter (Ethical Hacker)についての調査結果をまとめて紹介します。| blog of morioka12
本稿では、バグバウンティの入門として、主に Web アプリケーションを対象にした脆弱性の発見・報告・報酬金の取得について紹介します。| blog of morioka12
本稿では、バグハントの入門として、主に Web アプリケーションの OSS に焦点をおき、脆弱性の発見・報告・CVE ID の取得について紹介します。| blog of morioka12
Meet Gitlab CI Lint API| Vin01’s Blog
HackerOne is currently one of the most popular bug bounty program platforms. While the usual providers of bug bounty programs are companies, w while ago I noted that some people were running bug bounty programs on Hacker One for their private projects without payouts. It made me curious, so I decided to start one with some of my private web pages in scope.| blog.hboeck.de
Bug writeup for a CSRF vulnerability in Twitter that allowed an attacker to trick a user into deleting the addressbook remotely.| i break software - My work with different software, bug hunting and interesti...
