1. Home
  2. Bug Bounty Writeups
12 Articles

Bug Bounty Writeups

Real-world bug bounty writeups and vulnerability disclosures. Learn from actual security findings reported through responsible disclosure programs.

Hashcat Tutorial: Master Password Cracking with Hashcat
New

Hashcat Tutorial: Master Password Cracking with Hashcat

Unlock the power of Hashcat for password cracking. This deep dive covers setup, attack modes, and advanced techniques for pentesters, red teamers, and bug bounty hunters.

May 04, 2026
Reverse Shell Cheatsheet: Your Ultimate Pentesting Guide
New

Reverse Shell Cheatsheet: Your Ultimate Pentesting Guide

Master reverse shells with this ultimate cheatsheet for pentesters & bug bounty hunters. Get practical code examples, bypass techniques, and troubleshooting tips.

Apr 24, 2026
OWASP Top 10 Explained: A Pentester's Practical Guide
New

OWASP Top 10 Explained: A Pentester's Practical Guide

Dive deep into the OWASP Top 10 with practical insights, real-world examples, and hands-on advice for bug bounty hunters, red teamers, and AppSec engineers. Master critical web …

Apr 23, 2026
Wireshark Tutorial for Pentesters: Deep Dive into Packet Analysis
New

Wireshark Tutorial for Pentesters: Deep Dive into Packet Analysis

Master Wireshark for penetration testing and bug bounty hunting. This practical Wireshark tutorial covers installation, advanced filters, protocol analysis, and real-world scena…

Apr 21, 2026
Multiple Stored XSS and HTML Injection in
Archive

Multiple Stored XSS and HTML Injection in

In part two of G Suite vulnerability discussion, I am writing about a simple but quite serious vulnerability in yet another part of G Suite Applicatio...

2017
RCE In AddThis
Archive

RCE In AddThis

This vulnerability has been fixed as of July 20, 2016 and is shared with consent from the vendor.If you wish to share the information provided in the...

2017
PornHub: Email Confirmation Bypass
Archive

PornHub: Email Confirmation Bypass

Reporter : Vaxo Dai (@___0x00)After signing up client needs to verify his email address to further use but the confirmation can be bypassed and can pu...

2017
Reading Uber’s Internal Emails [Uber Bug Bounty
Archive

Reading Uber’s Internal Emails [Uber Bug Bounty

After recent finding about one of the Uber’s subdomain takeover was publicly disclosed, I looked into Uber to find similar bugs. One of my colle...

2017
How I snooped into your private Slack messages
Archive

How I snooped into your private Slack messages

When researching about MX records of slack.com, I noticed that they used a 3rd party email service. In that service, however slack.com was already cla...

2017
Bypassing Ebay XSS Protection to launch XSS by
Archive

Bypassing Ebay XSS Protection to launch XSS by

This is a small proof of concept regarding “Reflective Cross-Site Scripting [ R-XSS ]” which I had found on Ebay. I am not an active parti...

2017
I got emails - G Suite Vulnerability
Archive

I got emails - G Suite Vulnerability

After recent finding about Uber and SendGrid bug, I decided to check other third party applications that were also used for similar cases. During the ...

2017
This domain is my domain - G Suite A record
Archive

This domain is my domain - G Suite A record

In part two of G Suite vulnerability discussion, I am writing about a simple but quite serious vulnerability in yet another part of G Suite Applicatio...

2017