Tag Archive

Bugbounty

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

The Blend of Developer Tools into Security Assessments

Back to Top ↑

Pentesting

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

The Blend of Developer Tools into Security Assessments

Back to Top ↑

Analyzing JS Secrets

Finding Gems in JavaScript using Dumpster Diver

From my past experience, I realized the extensive use of JavaScript in modern applications. Most of the applications front-end logic is driven using JavaScript.

Back to Top ↑

Authorizations Issues

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑

Autorize

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑

Burp Suite

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑

CSV Injection

CSV Formula Injection

Another common security issue which is found these days is CSV injection(CSV - Comma Separated Value). Recently I came across a web application which had this bug and I could not stop myself from writing this blogpost.

Back to Top ↑

CSV Payloads

CSV Formula Injection

Another common security issue which is found these days is CSV injection(CSV - Comma Separated Value). Recently I came across a web application which had this bug and I could not stop myself from writing this blogpost.

Back to Top ↑

Chrome Dev Tools

The Blend of Developer Tools into Security Assessments

Back to Top ↑

Dev tools Bugbounty

The Blend of Developer Tools into Security Assessments

Back to Top ↑

Firefox Dev tools

The Blend of Developer Tools into Security Assessments

Back to Top ↑

Firefox Extension

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑

Firefox Multicontainers

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑

Formula Injection

CSV Formula Injection

Another common security issue which is found these days is CSV injection(CSV - Comma Separated Value). Recently I came across a web application which had this bug and I could not stop myself from writing this blogpost.

Back to Top ↑

Invalidate JWT

Long-lived JWT - Abuse and Mitigation

Back to Top ↑

JWT Vulnerabilities

Long-lived JWT - Abuse and Mitigation

Back to Top ↑

JWT attacks

Long-lived JWT - Abuse and Mitigation

Back to Top ↑

JavaScript

Finding Gems in JavaScript using Dumpster Diver

From my past experience, I realized the extensive use of JavaScript in modern applications. Most of the applications front-end logic is driven using JavaScript.

Back to Top ↑

Request Highlighters

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑

Revoke Access Tokens

Long-lived JWT - Abuse and Mitigation

Back to Top ↑

Secrets in JS

Finding Gems in JavaScript using Dumpster Diver

From my past experience, I realized the extensive use of JavaScript in modern applications. Most of the applications front-end logic is driven using JavaScript.

Back to Top ↑

Web Assessments

Authorization Checks Made Easy

Although its not new thing to blog about but I am sure, it will help out most of the security analyst and bug bounty people out there looking for authorization issues

Back to Top ↑