kingthorin_rm<p>📰 <span class="h-card" translate="no"><a href="https://infosec.exchange/@zaproxy" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>zaproxy</span></a></span> ⚡ release 2.16.1 just landed: <a href="https://www.zaproxy.org/blog/2025-03-25-zap-2-16-1/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">zaproxy.org/blog/2025-03-25-za</span><span class="invisible">p-2-16-1/</span></a></p><p><a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/WebAppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebAppSec</span></a> <a href="https://infosec.exchange/tags/BugBountyTips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBountyTips</span></a> <a href="https://infosec.exchange/tags/PenTest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenTest</span></a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DevSecOps</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.
Administered by:
Server stats:
9.4Kactive users
hachyderm.io: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#bugbountytips
0 posts · 0 participants · 0 posts today
Marduk_James :verified_paw:<p>It's been a while but here is another SQLi lab. Enjoy!</p><p><a href="https://medium.com/@marduk.i.am/sql-injection-union-attack-retrieving-multiple-values-in-a-single-column-d6c6d91be74d" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@marduk.i.am/sql-in</span><span class="invisible">jection-union-attack-retrieving-multiple-values-in-a-single-column-d6c6d91be74d</span></a></p><p><a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/SQL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQL</span></a> <a href="https://infosec.exchange/tags/SQLI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQLI</span></a> <a href="https://infosec.exchange/tags/injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>injection</span></a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>informationsecurity</span></a> <a href="https://infosec.exchange/tags/PortswiggerLabs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PortswiggerLabs</span></a></p>
0xceba<p>after a lengthy concept review, code review, and QA process, PortSwigger has published the Burp Variables extension to the BApp Store! if you do API testing from Burp, you should look into this productivity extension which allows you to store and reuse variables in your outgoing requests, similar to other API testing clients like Postman and Insomnia. this is a productivity boon because it gives you single place to update ephemeral credential/token values and it helps you keep track of your identifiers & credentials which minimizes false positives. to learn more:<br>- install the extension from the BApp Store<br>- see more details at the BApp Store page: <a href="https://portswigger.net/bappstore/27f89b068a3045649d4df77a863209c1" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">portswigger.net/bappstore/27f8</span><span class="invisible">9b068a3045649d4df77a863209c1</span></a><br>- review the source code at the extension's source repo: <a href="https://github.com/0xceba/burp_variables" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/0xceba/burp_variabl</span><span class="invisible">es</span></a></p><p><a href="https://infosec.exchange/tags/burp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burp</span></a> <a href="https://infosec.exchange/tags/burpsuite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burpsuite</span></a> <a href="https://infosec.exchange/tags/burp_suite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burp_suite</span></a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentesting</span></a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentest</span></a> <a href="https://infosec.exchange/tags/bugbounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Sam Stepanyan :verified: 🐘<p><a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Google</span></a>: Google did an Oopsie: a simple IDOR vulnerability allowed access to other users private files by changing the Google Drive file docID parameter - bug worth $3,133.7 <a href="https://infosec.exchange/tags/bugbounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbounty</span></a><br><a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a><br>👇<br><a href="https://c2a.github.io/simple-idor-on-google" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">c2a.github.io/simple-idor-on-g</span><span class="invisible">oogle</span></a></p>
POP POP RET<p>Bug Hunting Tip:</p><p>- 💯 Build your own API wordlist.<br>- Why? Public lists are too well-known and overused.<br>- Craft one tailored to your hunt for a competitive edge.<br>- Don’t forget to test these wordlists on URL subpaths, you might uncover unique bypasses.</p><p><a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a></p>
Anonymous 🐈️🐾☕🍵🏴🇵🇸 :af:<p>Automating Subdomain Takeover Detection: A Step-by-Step Guide<br><a href="https://bitpanic.medium.com/automating-subdomain-takeover-detection-a-step-by-step-guide-30d692f70752?source=rss------bug_bounty-5" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">bitpanic.medium.com/automating</span><span class="invisible">-subdomain-takeover-detection-a-step-by-step-guide-30d692f70752?source=rss------bug_bounty-5</span></a></p><p><a href="https://kolektiva.social/tags/bugbounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbounty</span></a> <a href="https://kolektiva.social/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://kolektiva.social/tags/bugbountytip" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytip</span></a></p>
0xceba<p>I'm excited to announce Burp Variables v.1.1.6. this version has an updated UI which streamlines how variables are added: they can now be added through the dedicated panel on the Variables tab or via the context menu for requests that come from the message editor. the latter option is convenient when working with new variable names that haven't been memorized yet. download the new release at: <a href="https://github.com/0xceba/burp_variables" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/0xceba/burp_variabl</span><span class="invisible">es</span></a></p><p><a href="https://infosec.exchange/tags/burp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burp</span></a> <a href="https://infosec.exchange/tags/burpsuite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burpsuite</span></a> <a href="https://infosec.exchange/tags/burp_suite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burp_suite</span></a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentesting</span></a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentest</span></a> <a href="https://infosec.exchange/tags/bugbounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a></p>
❤️ Luigi Mangione<p><a href="https://bird.makeup/users/hackinarticles/statuses/1874339769649414221" rel="nofollow noopener noreferrer" target="_blank">bird.makeup/users/hackin...</a>
Privacy Protection Tools Cheat Sheet
🔴⚫️Full HD Image: <a href="https://t.co/hdGaoiMEqC" rel="nofollow noopener noreferrer" target="_blank">t.co/hdGaoiMEqC</a>
<a href="https://bsky.app/search?q=%23infosec" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsky.app/search?q=%23cybersecurity" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://bsky.app/search?q=%23pentesting" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> <a href="https://bsky.app/search?q=%23redteam" rel="nofollow noopener noreferrer" target="_blank">#redteam</a> <a href="https://bsky.app/search?q=%23informationsecurity" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://bsky.app/search?q=%23CyberSec" rel="nofollow noopener noreferrer" target="_blank">#CyberSec</a> <a href="https://bsky.app/search?q=%23networking" rel="nofollow noopener noreferrer" target="_blank">#networking</a> <a href="https://bsky.app/search?q=%23networksecurity" rel="nofollow noopener noreferrer" target="_blank">#networksecurity</a> <a href="https://bsky.app/search?q=%23infosecurity" rel="nofollow noopener noreferrer" target="_blank">#infosecurity</a> <a href="https://bsky.app/search?q=%23cyberattacks" rel="nofollow noopener noreferrer" target="_blank">#cyberattacks</a> <a href="https://bsky.app/search?q=%23security" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://bsky.app/search?q=%23linux" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://bsky.app/search?q=%23cybersecurityawareness" rel="nofollow noopener noreferrer" target="_blank">#cybersecurityawareness</a> <a href="https://bsky.app/search?q=%23bugbounty" rel="nofollow noopener noreferrer" target="_blank">#bugbounty</a> <a href="https://bsky.app/search?q=%23bugbountytips" rel="nofollow noopener noreferrer" target="_blank">#bugbountytips</a></p>
Tib3rius :antiverified:<p>Transcription error in a short form video is actually funny.</p><p>What's everyone's favorite bug brownie?</p><p><a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/bugbrownietips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbrownietips</span></a></p>
Doyensec<p>Get your mind off the cold 🥶 & check out our new blog post! In it, bemodtwz@infosec.exchange extends Maxence Schmitt's research - giving details on using Eval Villain to find & exploit <a href="https://infosec.exchange/tags/CSPT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CSPT</span></a> vulnerabilities in modern apps. Read it today!</p><p><a href="https://blog.doyensec.com/2024/12/03/cspt-with-eval-villain.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.doyensec.com/2024/12/03/c</span><span class="invisible">spt-with-eval-villain.html</span></a></p><p><a href="https://infosec.exchange/tags/doyensec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>doyensec</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a></p>
Katie Paxton-Fear (InsiderPhD)<p>What is an API? What makes them special? And what kind of APIs are out there? <a href="https://infosec.exchange/tags/apisecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>apisecurity</span></a> <a href="https://infosec.exchange/tags/apis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>apis</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBounty</span></a></p>
Doyensec<p>👿Eval Villain update - available now! Recent improvements: <a href="https://infosec.exchange/tags/CSPT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CSPT</span></a> sink detection, addEventListener sync & needle and copy/paste injection exporting, along with bug fixes & improved usability. Install today!</p><p><a href="https://github.com/swoops/eval_villain" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/swoops/eval_villain</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/doyensec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>doyensec</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/xss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>xss</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a></p>
Marduk_James :verified_paw:<p>Last in a series of 3 labs. Enjoy</p><p><a href="https://medium.com/@marduk.i.am/sql-injection-union-attack-retrieving-data-from-other-tables-38f471813c57" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@marduk.i.am/sql-in</span><span class="invisible">jection-union-attack-retrieving-data-from-other-tables-38f471813c57</span></a></p><p><a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/SQL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQL</span></a> <a href="https://infosec.exchange/tags/SQLI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQLI</span></a> <a href="https://infosec.exchange/tags/injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>injection</span></a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>informationsecurity</span></a> <a href="https://infosec.exchange/tags/PortswiggerLabs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PortswiggerLabs</span></a></p>
Marduk_James :verified_paw:<p>First in a series of 3 labs.</p><p><a href="https://medium.com/@marduk.i.am/sql-injection-union-attack-determining-the-number-of-columns-returned-by-the-query-a740b76989fe" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@marduk.i.am/sql-in</span><span class="invisible">jection-union-attack-determining-the-number-of-columns-returned-by-the-query-a740b76989fe</span></a> </p><p><a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/SQL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQL</span></a> <a href="https://infosec.exchange/tags/SQLI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQLI</span></a> <a href="https://infosec.exchange/tags/injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>injection</span></a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>informationsecurity</span></a> <a href="https://infosec.exchange/tags/PortswiggerLabs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PortswiggerLabs</span></a></p>
Marduk_James :verified_paw:<p>Latest SQLi lab write-up. Hope you find it useful!</p><p><a href="https://medium.com/@marduk.i.am/sql-injection-attack-listing-the-database-contents-on-oracle-3be23e33a43d" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@marduk.i.am/sql-in</span><span class="invisible">jection-attack-listing-the-database-contents-on-oracle-3be23e33a43d</span></a></p><p><a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/SQL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQL</span></a> <a href="https://infosec.exchange/tags/SQLI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQLI</span></a> <a href="https://infosec.exchange/tags/injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>injection</span></a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>informationsecurity</span></a> <a href="https://infosec.exchange/tags/PortswiggerLabs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PortswiggerLabs</span></a></p>
Doyensec<p>📢 Attention <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appsec</span></a> people! Our latest <a href="https://infosec.exchange/tags/burpsuite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burpsuite</span></a> extension, Prototype Pollution Gadgets Finder (by Rolo Mijan) is now available in the BApp Store! Install it today to find & exploit server-side prototype pollution vulns!<br> <br><a href="https://infosec.exchange/tags/doyensec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>doyensec</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/ctf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ctf</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a></p><p><a href="https://portswigger.net/bappstore/fcbc58b33fc1486d9a795dedba2ccbbb" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">portswigger.net/bappstore/fcbc</span><span class="invisible">58b33fc1486d9a795dedba2ccbbb</span></a></p>
0xceba<p>if you do a lot web app testing of APIs that use JSON data, you should considering using the extension Prettify JSON Then Send to Comparer. this is a productivity extension that adds a context menu action to pretty print format JSON data before sending it to the Comparer tool. this greatly increases readability of JSON data in Comparer because you're no longer comparing long single lines with the dreaded 💀 horizontal scrollbar 💀. github repo: <a href="https://github.com/0xceba/burp_prettify_json_then_send_to_comparer" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/0xceba/burp_prettif</span><span class="invisible">y_json_then_send_to_comparer</span></a></p><p><a href="https://infosec.exchange/tags/burp_suite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burp_suite</span></a> <a href="https://infosec.exchange/tags/burp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burp</span></a> <a href="https://infosec.exchange/tags/burpsuite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>burpsuite</span></a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentesting</span></a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentest</span></a> <a href="https://infosec.exchange/tags/bugbounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a></p>
0xmmn<p><a href="https://infosec.exchange/tags/tips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tips</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a></p>
Marduk_James :verified_paw:<p>Latest lab write-up. Hope it's useful!</p><p><a href="https://medium.com/@marduk.i.am/sql-injection-attack-listing-the-database-contents-on-non-oracle-databases-825485566585" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@marduk.i.am/sql-in</span><span class="invisible">jection-attack-listing-the-database-contents-on-non-oracle-databases-825485566585</span></a></p><p><a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> <a href="https://infosec.exchange/tags/SQL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQL</span></a> <a href="https://infosec.exchange/tags/SQLI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SQLI</span></a> <a href="https://infosec.exchange/tags/injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>injection</span></a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>informationsecurity</span></a> <a href="https://infosec.exchange/tags/PortswiggerLabs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PortswiggerLabs</span></a></p>
happygeek :unverified: + :verified: = $0<p>By me @Forbes: Google has taken a new broom to the Chrome browser vulnerability rewards program. Hackers get ready...</p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/bugbountytips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bugbountytips</span></a> </p><p><a href="https://www.forbes.com/sites/daveywinder/2024/08/28/google-chrome-hackers-offered-new-250000-payday/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">forbes.com/sites/daveywinder/2</span><span class="invisible">024/08/28/google-chrome-hackers-offered-new-250000-payday/</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload