Hashcat Tutorial: Master Password Cracking with Hashcat
Unlock the power of Hashcat for password cracking. This deep dive covers setup, attack modes, and advanced techniques for pentesters, red teamers, and bug bounty hunters.
Reverse Shell Cheatsheet: Your Ultimate Pentesting Guide
Master reverse shells with this ultimate cheatsheet for pentesters & bug bounty hunters. Get practical code examples, bypass techniques, and troubleshooting tips.
OWASP Top 10 Explained: A Pentester's Practical Guide
Dive deep into the OWASP Top 10 with practical insights, real-world examples, and hands-on advice for bug bounty hunters, red teamers, and AppSec engineers. Master critical web …
Wireshark Tutorial for Pentesters: Deep Dive into Packet Analysis
Master Wireshark for penetration testing and bug bounty hunting. This practical Wireshark tutorial covers installation, advanced filters, protocol analysis, and real-world scena…
![Reading Uber’s Internal Emails [Uber Bug Bounty report worth $10,000]](https://64.media.tumblr.com/33254c86f8ac92f308e35394f10b0efd/tumblr_inline_od1rj4Sed81uuemko_540.png)
Reading Uber’s Internal Emails [Uber Bug Bounty report worth $10,000]
After recent finding about one of the Uber’s subdomain takeover was publicly disclosed, I looked into Uber to find similar bugs. One of my colleagues Abhibandu Kafle, pointed ou…
![How I snooped into your private Slack messages [Slack Bug bounty worth $2,500]](https://assets.tumblr.com/images/og/fb_landscape_share.png)
How I snooped into your private Slack messages [Slack Bug bounty worth $2,500]
When researching about MX records of slack.com, I noticed that they used a 3rd party email service. In that service, however slack.com was already claimed. After a little more r…
Bypassing Ebay XSS Protection to launch XSS by Nirmal Dahal
This is a small proof of concept regarding “Reflective Cross-Site Scripting [ R-XSS ]” which I had found on Ebay. I am not an active participant in bug bounty programs, but one …