| Thu, 30 Apr 2026 06:01:01 GMT |
How to Defend Against AI Agent Traps: DeepMind’s New Framework |
security |
Yes |
Yes |
| Thu, 30 Apr 2026 06:19:39 GMT |
Maester �� Multi-Tenant Reports — Microsoft Security Test A... |
security |
Yes |
Yes |
| Thu, 30 Apr 2026 06:40:08 GMT |
Linux File & Folder Protection + History Control (Practice Guide... |
cybersecurity, infosec |
Yes |
Yes |
| Thu, 30 Apr 2026 05:07:43 GMT |
Cisco Ethical Hacker Notes — part 8 |
infosec, ethical-hacking, cyber-security-awareness |
Yes |
Yes |
| Thu, 30 Apr 2026 06:40:05 GMT |
The Undersea Cable War: The Battle for the Deep-Sea Arteries of t... |
security |
Yes |
Yes |
| Thu, 30 Apr 2026 05:28:48 GMT |
Why Basic Technology Education Matters |
information-technology |
Yes |
Yes |
| Thu, 30 Apr 2026 06:56:05 GMT |
Best Ethical Hacking Training in Noida | Ducat India |
ethical-hacking |
Yes |
Yes |
| Thu, 30 Apr 2026 06:48:02 GMT |
Week 6:From Signals to Security: Understanding and Inspecting Wir... |
cybersecurity, penetration-testing |
Yes |
Yes |
| Thu, 30 Apr 2026 06:29:54 GMT |
Your Technical Skills Are Expiring — Part 5: Automation and AI ... |
cybersecurity |
Yes |
Yes |
| Thu, 30 Apr 2026 06:26:13 GMT |
How AI Works: Prompts, Behaviour, and Security Risks |
cybersecurity |
Yes |
Yes |
| Thu, 30 Apr 2026 05:15:31 GMT |
Your System Is Event-Driven. Your Bugs Are Time-Delayed |
bugs |
Yes |
Yes |
| Thu, 30 Apr 2026 05:09:21 GMT |
The Illusion of Neutrality: The Trojan Horse of AI and the Pollut... |
security |
Yes |
Yes |
| Thu, 30 Apr 2026 06:03:16 GMT |
Why AI Pentesting Will Become Essential in the Future |
penetration-testing, pentesting, ethical-hacking |
Yes |
Yes |
| Thu, 30 Apr 2026 05:26:06 GMT |
Cybersecurity is not just about hacking systems — it is about u... |
information-security |
Yes |
Yes |
| Thu, 30 Apr 2026 06:27:56 GMT |
Poornima University’s B.Tech AI & Cyber Security: 2026 Course D... |
cybersecurity |
Yes |
Yes |
| Thu, 30 Apr 2026 05:32:23 GMT |
Everyone Is Using OpenClaw. How Many Know What It Actually Is? |
security |
Yes |
Yes |
| Thu, 30 Apr 2026 06:54:08 GMT |
Black Trace Analytics Prepares to Enter the Healthcare Arena |
cybersecurity, cyber-security-awareness |
Yes |
Yes |
| Thu, 30 Apr 2026 07:07:47 GMT |
System Prompts vs. User Prompts: The Security Boundary Every AI D... |
cybersecurity |
Yes |
Yes |
| Thu, 30 Apr 2026 06:57:00 GMT |
Best Ethical Hacking Training in Noida | Ducat India |
ethical-hacking |
Yes |
Yes |
| Thu, 30 Apr 2026 06:11:01 GMT |
Designing Secure Logout Flows in a Multi-App Ecosystem |
security |
Yes |
Yes |
| Thu, 30 Apr 2026 07:06:54 GMT |
Who to report crypto scam to? |
cybersecurity |
Yes |
Yes |
| Thu, 30 Apr 2026 06:14:58 GMT |
DAST vs SAST: The Two Pillars of Modern Application Security |
security, penetration-testing, pentesting |
Yes |
Yes |
| Thu, 30 Apr 2026 06:59:19 GMT |
Best Ethical Hacking Training in Noida | Ducat India |
ethical-hacking |
Yes |
Yes |
| Thu, 30 Apr 2026 05:06:38 GMT |
7 Critical SaaS Security Vulnerabilities We Keep Finding in Real ... |
penetration-testing |
Yes |
Yes |
| Thu, 30 Apr 2026 05:20:18 GMT |
How I Found My First (Unethical) Bug |
bug-bounty, hacking, infosec, information-security, bug-bounty-writeup |
Yes |
Yes |
| Thu, 30 Apr 2026 06:58:28 GMT |
AI Agent Security Is Broken -Here’s Why |
cybersecurity |
Yes |
Yes |
| Thu, 30 Apr 2026 04:44:57 GMT |
Top 3 Digital Marketing Trends in 2026 |
information-technology |
Yes |
Yes |
| Thu, 30 Apr 2026 05:52:39 GMT |
From packaging to behavior |
hacking, ethical-hacking |
Yes |
Yes |
| Thu, 30 Apr 2026 07:01:01 GMT |
CIO Seviyesine Gelene Kadar IT’de Çığ Gibi Büyüyen Problem... |
information-technology |
Yes |
Yes |
| Thu, 30 Apr 2026 05:01:01 GMT |
10 Software Company Mistakes to Avoid for Successful Development ... |
information-technology |
Yes |
Yes |
| Thu, 30 Apr 2026 04:50:25 GMT |
Why Emotional Intelligence Leadership Matters in Today’s Workpl... |
information-technology |
Yes |
Yes |
| Thu, 30 Apr 2026 06:02:35 GMT |
Build Your Own AI Bug Hunter : Fully Local, Fully Private |
bug-bounty |
Yes |
Yes |
| Thu, 30 Apr 2026 03:12:07 GMT |
MEKANISME SQL INJECTION DAN STRATEGI KEAMANAN |
web-security |
|
Yes |
| Thu, 30 Apr 2026 03:13:58 GMT |
DEEP ROOT H4K-IT Writeup |
ethical-hacking |
|
Yes |
| Thu, 30 Apr 2026 02:41:17 GMT |
Artificial Intelligence and Post-Quantum Cryptography (PQC) |
infosec |
|
Yes |
| Thu, 30 Apr 2026 03:01:01 GMT |
How I cleared ISC2 SSCP and why it’s fundamentally different fr... |
information-security |
|
Yes |
| Thu, 30 Apr 2026 00:12:51 GMT |
I Built an OCI Resource Inspector in Python — Here’s How It W... |
information-technology |
|
Yes |
| Thu, 30 Apr 2026 03:16:01 GMT |
Discovering a Stored XSS Vulnerability in a Blog Feature (Respons... |
xss-vulnerability |
|
Yes |
| Thu, 30 Apr 2026 02:43:40 GMT |
The NIST Cybersecurity Framework Explained So Simply Anyone Can U... |
information-security |
|
Yes |
| Thu, 30 Apr 2026 04:08:01 GMT |
GoPlus April 2026 Web3 & AI Security Data Report |
security |
|
Yes |
| Thu, 30 Apr 2026 02:41:41 GMT |
Undiscovered (THM) Tryhackme Writeup Answer |
hacking |
|
Yes |
| Thu, 30 Apr 2026 02:04:17 GMT |
From Recon to Letter of Recognition | NASA VDP |
bug-bounty, bugcrowd |
|
Yes |
| Thu, 30 Apr 2026 03:59:33 GMT |
Social Engineering: The Cyber Threat That Targets People, Not Sy... |
ethical-hacking |
|
Yes |
| Thu, 30 Apr 2026 00:27:06 GMT |
Shenzi | Proving Grounds | OSCP Preparation |
bug-bounty, hacking |
|
Yes |
| Thu, 30 Apr 2026 01:06:38 GMT |
Use-After-Free in curl’s SMB connection reuse |
bug-bounty, vulnerability, bugs |
|
Yes |
| Thu, 30 Apr 2026 01:27:12 GMT |
CVE-2026–25924: Administrative RCE via Security Control Bypass ... |
vulnerability, cve |
|
Yes |
| Thu, 30 Apr 2026 04:10:49 GMT |
I Built an AI Agent That Actually Hacks Your App — So You Can F... |
hacking |
|
Yes |
| Thu, 30 Apr 2026 02:01:01 GMT |
When AI Becomes the Hacker: Understanding Autonomous Cyberattack... |
hacking |
|
Yes |
| Thu, 30 Apr 2026 04:43:43 GMT |
Intigriti April 2026 XSS Challenge Writeup |
security, infosec, bugbounty-writeup |
|
Yes |
| Thu, 30 Apr 2026 02:53:00 GMT |
Can a simulated phishing campaign be too good? |
cyber-security-awareness |
|
Yes |
| Thu, 30 Apr 2026 03:26:37 GMT |
How I was able to download every paid courses for free on a reput... |
bug-bounty, pentesting |
|
Yes |
| Thu, 30 Apr 2026 04:31:08 GMT |
Real Bug Reports HackerOne Disclosures Se Seekho: Top Hunters Ki ... |
penetration-testing, infosec, ethical-hacking |
|
Yes |
| Thu, 30 Apr 2026 00:38:05 GMT |
TryHackMe Walkthrough: Windows Fundamentals Part 2 |
infosec |
|
Yes |
| Thu, 30 Apr 2026 04:04:27 GMT |
Genshin Account being hacked. |
hacking |
|
Yes |
| Thu, 30 Apr 2026 04:38:10 GMT |
Cisco Ethical Hacker notes — part 7 |
infosec, ethical-hacking, cyber-security-awareness |
|
Yes |
| Wed, 29 Apr 2026 08:20:02 GMT |
10 Most Influential CISOs to Follow in 2026 |
web-security |
|
|
| Tue, 28 Apr 2026 10:03:47 GMT |
Bypassing File Upload Limits via Race Condition |
bugs, hackerone, bugbounty-writeup |
|
|
| Wed, 29 Apr 2026 04:31:01 GMT |
CVSS Score Severity Kaise Decide Karte Hain: $500 aur $5,000 Boun... |
pentesting |
|
|
| Thu, 09 Oct 2025 18:33:05 GMT |
0-click Account Takeover via Punycode |
bug-bounty-program |
|
|
| Wed, 10 Dec 2025 12:06:41 GMT |
Strengthening Web3 Security: Recent Vulnerability Findings from Y... |
vulnerability-disclosure |
|
|
| Fri, 09 Jan 2026 05:50:02 GMT |
Caches, Edge, and Exploits |
web-cache-poisoning |
|
|
| Thu, 02 Apr 2026 07:44:22 GMT |
SeedLab: Cross-Site Scripting(XXS) Attack Writeup |
cross-site-scripting |
|
|
| Wed, 29 Apr 2026 16:05:17 GMT |
We Built an AI Tool That Tells You If a Message Is a Scam. Here I... |
cyber-security-awareness |
|
|
| Sun, 26 Apr 2026 17:13:53 GMT |
DiceForge (RCE) Bugforge |
rce |
|
|
| Sat, 14 Mar 2026 18:06:12 GMT |
Web Security Series #3 — Discovering Credentials Using Cluster ... |
bug-bounty-hunting |
|
|
| Fri, 11 Jul 2025 16:20:24 GMT |
PC WORX: The Hidden Risk in Your Industrial Network |
censys |
|
|
| Tue, 14 Apr 2026 08:01:48 GMT |
GraphQL RCE: The Kill Chain to Cloud Identity…! |
rce |
|
|
| Sat, 25 Apr 2026 14:46:05 GMT |
File Inclusion— Skills Assesment (HTB) |
file-inclusion |
|
|
| Fri, 20 Feb 2026 14:44:02 GMT |
XSS Attack Methodology: How Attackers Actually Exploit Your Brows... |
xss-bypass |
|
|
| Mon, 06 Apr 2026 21:45:53 GMT |
Cookie(Çerez) Türleri ve Pentest Açısından Önemi |
web-pentest |
|
|
| Thu, 23 Apr 2026 11:12:22 GMT |
One Missing Dictionary Key. One Production Cloud Identity. |
rce |
|
|
| Sun, 15 Mar 2026 11:14:38 GMT |
Local File Inclusion (LFI) in Leave Application System (PHP & SQL... |
lfi |
|
|
| Wed, 11 Mar 2026 09:56:42 GMT |
Hardening Keycloak: Implementing Security Pentest Requirements as... |
pentest |
|
|
| Tue, 11 Nov 2025 16:43:14 GMT |
Beyond Google: Navigating the Hidden Internet with Shodan and Cen... |
censys |
|
|
| Sun, 26 Apr 2026 11:39:49 GMT |
How I Built an Automated Subdomain Monitor That Texts Me Every Ti... |
bugbounty-writeup |
|
|
| Wed, 29 Apr 2026 13:43:19 GMT |
What CISOs Should Expect from SIEM Platforms Today |
cyber-security-awareness |
|
|
| Wed, 21 Jan 2026 15:09:15 GMT |
Lab: Weak isolation on dual-use endpoint | Portswigger |
web-cache-poisoning |
|
|
| Thu, 26 Feb 2026 21:33:21 GMT |
External Vulnerability Scanning FAQ |
vulnerability-scanning |
|
|
| Wed, 22 Oct 2025 14:11:32 GMT |
Mastering Subdomain Enumeration: A Beginner’s Guide to Expandin... |
subdomain-enumeration |
|
|
| Tue, 14 Apr 2026 10:19:13 GMT |
Pentester Lab Recon 07 Writeup |
recon |
|
|
| Wed, 29 Apr 2026 15:51:03 GMT |
CodeAlpha Project 3 |
vulnerability |
|
|
| Tue, 28 Apr 2026 06:20:11 GMT |
I Changed One Number… and Got Access to Citizens’ ID and Addr... |
bug-bounty-tips |
|
|
| Fri, 06 Feb 2026 06:33:08 GMT |
5 Ways to Bypass Email Verification Without Using Any Tool |
bug-bounty-program |
|
|
| Sat, 07 Mar 2026 04:09:52 GMT |
Threat Intelligence Investigation — Dropbox Phishing Domain Ana... |
google-dorking |
|
|
| Sat, 28 Feb 2026 09:31:10 GMT |
Google Dork’un Pentest Yaşam Döngüsündeki Yeri |
google-dork |
|
|
| Mon, 27 Apr 2026 07:20:55 GMT |
From {{3*3}} to $$$$: One Payload Changed Everything |
vapt |
|
|
| Wed, 18 Mar 2026 14:34:33 GMT |
File Inclusion Zafiyetleri: LFI ve RFI Nedir, Nasıl Çalışır ... |
file-inclusion |
|
|
| Fri, 24 Apr 2026 18:01:11 GMT |
Signed, Vulnerable, and Still Dangerous: What a BYOVD Research Pr... |
security-research |
|
|
| Tue, 10 Mar 2026 09:59:23 GMT |
I Thought I Found 259 Exposed Systems in Bengaluru… I Was Wrong |
shodan |
|
|
| Tue, 28 Apr 2026 10:13:19 GMT |
WebSockets Aren’t Scary (I Learned Them So You Don’t Have To) |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Mon, 13 Apr 2026 15:06:48 GMT |
DOT Hacked: The Hyperbridge Exploit |
exploit |
|
|
| Sat, 10 Jan 2026 05:03:45 GMT |
Lab:Web cache poisoning via an unkeyed query parameter | Portswi... |
web-cache-poisoning |
|
|
| Fri, 17 Apr 2026 18:21:00 GMT |
The 12-Character Backdoor: How One Static Key in All-in-One WP Mi... |
remote-code-execution |
|
|
| Mon, 13 Apr 2026 21:35:05 GMT |
Fixture - WebVerse (Medium) |
ssrf |
|
|
| Tue, 09 Sep 2025 10:14:01 GMT |
The Psychology of Listings: Why Users Trust Some Directories More... |
directory-listing |
|
|
| Tue, 28 Apr 2026 20:57:59 GMT |
Building a Windows File System Minifilter Driver: Intercepting Fi... |
pentesting |
|
|
| Tue, 05 Dec 2023 07:54:40 GMT |
LFI via SMTP log poisoning |
log-poisoning |
|
|
| Wed, 29 Apr 2026 07:45:51 GMT |
step by step reverse engineering in allsafe finding the deep link... |
pentesting |
|
|
| Tue, 07 Apr 2026 03:34:00 GMT |
TryHackMe — Intro to Cross-site Scripting (Walkthrough) |
cross-site-scripting |
|
|
| Mon, 27 Apr 2026 10:33:00 GMT |
How to Design Scalable Web3 Applications: Solving Performance, Se... |
application-security |
|
|
| Thu, 13 Feb 2025 03:29:37 GMT |
ZoomEye Meets DeepSeek: AI-Powered Cyberspace Intelligence |
zoomeye |
|
|
| Sat, 18 Apr 2026 18:50:24 GMT |
From Zero Auth to Admin Access |
bugbounty-writeup |
|
|
| Tue, 03 Mar 2026 19:29:30 GMT |
Wie angreifbar ist Ihr Unternehmen wirklich? |
pentest |
|
|
| Tue, 28 Apr 2026 12:31:02 GMT |
How to Upload Files in Next.js (Images & Documents) |
file-upload |
|
|
| Sun, 26 Apr 2026 23:11:15 GMT |
From Data Dumping to Bug Hunting: Building a Recon Pipeline That ... |
recon |
|
|
| Fri, 24 Apr 2026 12:21:00 GMT |
Understanding Cross-Site Scripting (XSS): Reflected vs Stored Att... |
xss-vulnerability |
|
|
| Tue, 28 Apr 2026 07:04:36 GMT |
Abused an MCP Server to Perform Lateral Movement | Critical Find... |
hackerone |
|
|
| Wed, 29 Apr 2026 14:00:03 GMT |
We Got Targeted: How Attackers Used Microsoft Teams to Own an Emp... |
cyber-security-awareness |
|
|
| Sat, 25 Apr 2026 17:32:01 GMT |
Bug Bounty Automation with n8n Ep.1 |
ssrf |
|
|
| Mon, 13 Apr 2026 22:31:01 GMT |
The Cost of Trusting My Own Fingers |
bounties |
|
|
| Wed, 29 Apr 2026 17:52:50 GMT |
Reversing ELF — TryHackMe WriteUp |
penetration-testing |
|
|
| Tue, 31 Mar 2026 08:17:14 GMT |
Exploiting OData Wildcards: How I Scraped Tesla’s Internal Empl... |
bugcrowd |
|
|
| Thu, 12 Mar 2026 15:22:45 GMT |
TryHackMe | Lo-Fi |
local-file-inclusion |
|
|
| Fri, 17 Apr 2026 11:55:52 GMT |
How to Upload Files in Spring Boot (Single & Multiple File Upload... |
file-upload |
|
|
| Mon, 13 Apr 2026 06:20:22 GMT |
Veeam Plaintext Credential Exposure PoC: From Local Access to Pri... |
security-research |
|
|
| Thu, 28 Sep 2023 23:05:39 GMT |
Archangel — TryHackMe |
log-poisoning |
|
|
| Wed, 29 Apr 2026 21:50:43 GMT |
TryHackMe | Report Writing for SOC L2 | WriteUp |
cyber-security-awareness |
|
|
| Sat, 25 Apr 2026 20:00:13 GMT |
IDOR….will help you to get bounty |
idor |
|
|
| Sun, 15 Feb 2026 09:26:13 GMT |
TryHackMe Walkthrough -Subdomain Enumeration |
subdomain-enumeration |
|
|
| Mon, 16 Mar 2026 14:32:42 GMT |
Web Security Series #5 — Exploiting Broken Access Control via T... |
bug-bounty-hunting |
|
|
| Wed, 29 Apr 2026 17:53:37 GMT |
Creating New SIEM Integrations: The Simpler Way |
infosec |
|
|
| Sat, 25 Apr 2026 17:00:49 GMT |
Critical Zero-Click Account Takeover via Archived / Cached Passwo... |
bugbounty-writeup |
|
|
| Thu, 14 Aug 2025 10:08:18 GMT |
Predictive Analytics and Voice Technology: A Winning Combination ... |
vdp |
|
|
| Mon, 23 Mar 2026 14:17:48 GMT |
Authentication bypass via information disclosure | Lab-04 |
information-disclosure |
|
|
| Thu, 02 Apr 2026 20:20:02 GMT |
What a Real Autonomous Recon Pipeline Looks Like |
recon |
|
|
| Tue, 28 Apr 2026 18:20:28 GMT |
AI Can Now Discover and Execute Exploits — What Does That Mean? |
exploit |
|
|
| Mon, 27 Apr 2026 04:11:56 GMT |
Cloudflare R2 + Custom Domain |
file-upload |
|
|
| Wed, 29 Apr 2026 20:58:20 GMT |
Laboratorio de vulnerabilidades en el lado del cliente |
xss-vulnerability |
|
|
| Sat, 28 Mar 2026 08:13:46 GMT |
How Exposed n8n Webhooks Become an Attack Surface |
shodan |
|
|
| Sun, 12 Apr 2026 12:29:45 GMT |
პირ�ვნების ძიების სრული... |
google-dork |
|
|
| Tue, 18 Nov 2025 18:12:40 GMT |
Dork Labs Awarded AWS Activate Startup Grant |
dorks |
|
|
| Sun, 26 Apr 2026 14:51:52 GMT |
How I Found a Reflected XSS in a Government Website |
xss-vulnerability |
|
|
| Wed, 29 Apr 2026 23:12:25 GMT |
How Online Platforms Detect Fake ID Documents During Signup |
information-security |
|
|
| Fri, 20 Feb 2026 18:55:00 GMT |
12+ MUST Know Google Dorking Commands in 2026 |
google-dorking |
|
|
| Tue, 24 Mar 2026 07:41:00 GMT |
How I Built a Directory Listing Site (ToolIndex.net) and What I L... |
directory-listing |
|
|
| Tue, 28 Apr 2026 08:31:32 GMT |
NIST : comment l’organisme trie les failles pour éviter le cha... |
cve |
|
|
| Thu, 12 Mar 2026 18:11:47 GMT |
A Simple P4 Bug That Ended as Duplicate |
bug-bounty-hunting |
|
|
| Thu, 11 Sep 2025 22:20:14 GMT |
It’s Coming: DorkFi Delivers PreFi Rewards Surge |
dorking |
|
|
| Sun, 12 Apr 2026 10:48:18 GMT |
Ubah Keterampilan Anda Menjadi ALPH: Panduan Hadiah Alphland |
bounty-program |
|
|
| Sat, 18 Apr 2026 05:07:38 GMT |
We’re About to Stop Trusting What We See Online — And AI Is t... |
cyber-sec |
|
|
| Thu, 23 Apr 2026 13:57:34 GMT |
Address Poisoning Attacks: How Hackers Exploit Your Copy-Paste Ha... |
exploit |
|
|
| Mon, 13 Apr 2026 14:14:34 GMT |
Zero‑Touch RCE (Remote Code Execution) Attack |
remote-code-execution |
|
|
| Tue, 15 Jul 2025 12:15:58 GMT |
“Secure� OPC UA Setups Are Being Hacked — Here’s Why |
censys |
|
|
| Sat, 04 Apr 2026 09:10:35 GMT |
We’ve messed up, a lot. Here’s Why Scribble Still Exists to c... |
bounties |
|
|
| Mon, 20 Apr 2026 22:21:12 GMT |
AI-Powered File Security: Protecting Your Laravel App with Magika |
file-upload |
|
|
| Wed, 23 Jul 2025 15:15:01 GMT |
TryHackMe Include walkthrough: SSRF, log poisoning & LFI2RCE, wit... |
log-poisoning |
|
|
| Mon, 06 Apr 2026 21:37:15 GMT |
Walkthrough: Executing Local File Inclusion and Remote Code Execu... |
remote-code-execution, local-file-inclusion |
|
|
| Sat, 06 Dec 2025 17:05:14 GMT |
GitHub Pages Subdomain Takeover on aiaa-dpw.larc.nasa.gov (NASA V... |
subdomain-takeover |
|
|
| Wed, 29 Apr 2026 14:48:38 GMT |
Your AI Assistant Is Piping Unsanitized Output Into Your Stack. A... |
vulnerability |
|
|
| Fri, 20 Mar 2026 23:01:01 GMT |
How I Automated Google Dorking with a Simple Bookmarklet |
google-dorking |
|
|
| Sat, 28 Feb 2026 21:11:37 GMT |
I Shouldn’t Be Sharing This: The 2026 Google Dork Bible That St... |
google-dork |
|
|
| Wed, 15 Apr 2026 10:48:09 GMT |
Cross-Chain Bridge Exploits: Why They’re Still Web3’s Biggest... |
exploit |
|
|
| Thu, 23 Apr 2026 00:58:15 GMT |
CSP bypass and Dangling Markup Xss |
cross-site-scripting |
|
|
| Mon, 13 Apr 2026 03:31:01 GMT |
Google Dorks Google Ko Bana Do Apna Hacking Tool: Free Mein Bugs ... |
google-dork |
|
|
| Wed, 18 Feb 2026 21:56:48 GMT |
Chapter 14: Subdomain Takeover |
subdomain-takeover |
|
|
| Thu, 04 Dec 2025 04:45:36 GMT |
What is Google Dorking? |
dorking |
|
|
| Fri, 24 Apr 2026 06:09:47 GMT |
Is Web Filtering Quietly Controlling Your Online Experience Witho... |
cybersecurity-tools |
|
|
| Thu, 18 Sep 2025 05:45:26 GMT |
Data Accuracy in Directory Websites: Why Clean Listings = Loyal U... |
directory-listing |
|
|
| Thu, 19 Feb 2026 04:57:17 GMT |
Introducing “Information Gathering� as the First Phase of Web... |
google-dorking |
|
|
| Sat, 04 Jan 2025 17:20:23 GMT |
GitHub dork |
github-dorking |
|
|
| Wed, 29 Apr 2026 23:58:38 GMT |
eWPTXv3 Exam Review (2026) |
bug-bounty, penetration-testing, web-security |
|
|
| Wed, 29 Apr 2026 12:42:41 GMT |
A Systematic Guide to Debugging JavaScript at Scale |
bugs |
|
|
| Tue, 28 Apr 2026 14:44:17 GMT |
Cross-Site Scripting: Serangan Tersembunyi di Balik Input Penggun... |
cross-site-scripting |
|
|
| Sun, 24 Aug 2025 20:18:55 GMT |
How I found an Account Lockout Vulnerability Without Any Tools |
bug-bounty-program |
|
|
| Fri, 10 Apr 2026 11:18:22 GMT |
What Happens If You Remove All Tools in Cybersecurity? |
cybersecurity-tools |
|
|
| Wed, 28 Jan 2026 07:31:37 GMT |
Lab: Targeted web cache poisoning using an unknown header | Port... |
web-cache-poisoning |
|
|
| Sat, 20 Dec 2025 18:21:40 GMT |
N0aziXss SubSpectre: Advanced Subdomain Discovery with Intelligen... |
subdomain-enumeration |
|
|
| Tue, 21 Apr 2026 17:44:36 GMT |
TuesdayTool 44: ThreatCaddy: A Modern Approach to Threat Intellig... |
cybersecurity-tools |
|
|
| Sun, 05 Apr 2026 12:44:38 GMT |
Comment une faille XSS peut vider un compte bancaire |
cross-site-scripting |
|
|
| Sun, 01 Mar 2026 14:20:56 GMT |
Valenfind— CTF Writeup |
local-file-inclusion |
|
|
| Fri, 06 Jun 2025 15:47:21 GMT |
��♂� GitHub Dorking for Bug Bounty: Hackers' Hidden Playg... |
github-dorking |
|
|
| Mon, 27 Apr 2026 08:14:51 GMT |
Wordpress ACF-Extended CVE-2025–14533 Deep Dive |
cve |
|
|
| Sat, 11 Apr 2026 05:28:40 GMT |
Pentester Recon 03 Write Up |
recon |
|
|
| Wed, 29 Apr 2026 20:28:42 GMT |
If You’d Known, Would You Have Agreed? |
information-security |
|
|
| Thu, 21 Aug 2025 10:04:08 GMT |
Dork Like a Demon: FOFA Edition for Hackers & Bug Bounty Hunters |
dorking |
|
|
| Mon, 23 Mar 2026 11:04:28 GMT |
P1 Vulnerability File Upload by RCE: Apache Tomcat Manager Exploi... |
remote-code-execution |
|
|
| Mon, 30 Mar 2026 06:03:13 GMT |
Why Business Directory Listings Are the Secret Weapon of Off-Page... |
directory-listing |
|
|
| Fri, 10 Apr 2026 12:32:22 GMT |
How Soroban’s CAP-0066 Killed My LayerZero Finding |
bounty-program |
|
|
| Fri, 03 Apr 2026 08:19:32 GMT |
Why API Key Security Should Be Your Startup’s First Priority |
api-key |
|
|
| Wed, 29 Apr 2026 17:09:26 GMT |
EXCLUSIVE: Levit8 Pty Ltd Don’t Pay Their Staff. |
information-technology |
|
|
| Wed, 29 Apr 2026 14:47:41 GMT |
The Dorking Manifesto: Uncovering the Hidden Web |
google-dorking |
|
|
| Mon, 03 Nov 2025 19:42:12 GMT |
Announcing DorkFi Go-Live Date: Liquidity is Coming |
dorks |
|
|
| Thu, 16 Apr 2026 11:14:18 GMT |
Finance in Nigeria Just Moved to WhatsApp |
bounty-program |
|
|
| Wed, 18 Feb 2026 01:09:03 GMT |
cURL’s Bug Bounty Is Dead. AI Killed It. |
bounty-program |
|
|
| Mon, 27 Apr 2026 07:12:30 GMT |
One Weird Query String That Let Anyone Hijack Any Account in Roc... |
bugs, bounties |
|
|
| Thu, 02 Apr 2026 12:05:48 GMT |
IoT Cihazlar: Evinizde ki Yabancı |
shodan |
|
|
| Wed, 29 Apr 2026 15:33:59 GMT |
entry 003 · SOC journey |
cyber-security-awareness |
|
|
| Fri, 24 Jan 2025 00:08:47 GMT |
A majestic temple opportunity of wellbeing and wellness |
web-pentest |
|
|
| Sat, 06 Dec 2025 08:29:35 GMT |
The Midnight Epiphany: How a News Notification Cracked My Stubbor... |
vulnerability-disclosure |
|
|
| Tue, 28 Apr 2026 16:12:33 GMT |
This Is How I Could Have Reactivated Your Instagram Account Witho... |
bug-bounty-tips |
|
|
| Thu, 16 Apr 2026 14:58:15 GMT |
April 2026 Microsoft Security Update Cycle |
rce |
|
|
| Thu, 23 Apr 2026 14:41:01 GMT |
Stop Learning — Start Mastering These Cybersecurity Tools in 20... |
cybersecurity-tools |
|
|
| Sat, 02 Aug 2025 14:15:23 GMT |
The Silent Risk in Your ICS: Why S7 Protocol Needs Security Atten... |
censys |
|
|
| Thu, 08 Jan 2026 09:02:50 GMT |
osint-Forgotten Ruins bounty $$ |
bounties |
|
|
| Sun, 22 Mar 2026 14:53:56 GMT |
Source code disclosure via backup files | Lab-03 |
information-disclosure |
|
|
| Thu, 23 Apr 2026 07:28:44 GMT |
Exploitation with Metasploit |
vapt |
|
|
| Sat, 11 Apr 2026 13:56:44 GMT |
Top Cybersecurity Tools for Beginners: A Complete List (2026) |K... |
cybersecurity-tools |
|
|
| Sat, 20 Apr 2024 17:20:58 GMT |
TryHackMe — Brute Walkthrough | TheHiker |
log-poisoning |
|
|
| Wed, 22 Apr 2026 11:18:21 GMT |
Hacker101 | CTF | BugDB v2 |
hackerone |
|
|
| Tue, 28 Apr 2026 10:00:55 GMT |
Threat Modeling AI Systems: A Complete Playbook for Practitioners |
application-security |
|
|
| Wed, 08 Apr 2026 13:31:24 GMT |
Hunting on Flipkart: When Product Specs Become Payloads |
google-dork |
|
|
| Thu, 23 Apr 2026 17:38:55 GMT |
How I Found a Critical Bug Using Claude Desktop (Free) |
idor |
|
|
| Wed, 25 Feb 2026 00:40:05 GMT |
Icy “Doodle� Site | ATC CTF 2.0 | Google Dorking| CTFs |
google-dorking |
|
|
| Sat, 18 Apr 2026 20:01:01 GMT |
Natural Capital, Deep Time, and What Refuses to Be Measured |
information-disclosure |
|
|
| Sat, 25 Apr 2026 02:19:00 GMT |
Yellow Cockatoo RAT (Jupyter’s Bro)Write-Up (CyberDefenders) |
remote-code-execution |
|
|
| Sun, 26 Apr 2026 22:37:30 GMT |
Running a virtual iPhone for security research, no Jailbreak Requ... |
security-research |
|
|
| Wed, 12 Feb 2025 22:46:35 GMT |
https://www.express.co.uk/life-style/property/2012927/cleaning-ch... |
web-pentest |
|
|
| Sun, 12 Apr 2026 22:57:55 GMT |
Google’s Hackers Investigated 500,000 Hours of Breaches. Hereâ€... |
exploit |
|
|
| Tue, 06 Jan 2026 15:29:55 GMT |
Lab: Web cache poisoning via a fat GET request | Portswigger |
web-cache-poisoning |
|
|
| Wed, 29 Apr 2026 10:21:22 GMT |
Cross-Site Scripting (XSS): Ancaman Tersembunyi di Balik Halaman ... |
web-security |
|
|
| Thu, 25 Dec 2025 00:47:15 GMT |
Subdomain Takeover Explained: Complete Step-by-Step Guide (Recon ... |
subdomain-takeover |
|
|
| Wed, 05 Nov 2025 12:42:46 GMT |
How I Hacked Bank’s Admin Portal |
vdp |
|
|
| Wed, 29 Apr 2026 16:31:38 GMT |
When a Security Fix Creates a New Problem: Microsoft’s RDP Warn... |
vulnerability |
|
|
| Thu, 19 Feb 2026 12:53:45 GMT |
Lab: Web cache poisoning via HTTP/2 request tunnelling | Portswi... |
web-cache-poisoning |
|
|
| Thu, 16 Apr 2026 10:27:11 GMT |
Why Most Web Applications Are Still Insecure in 2026 (And How At... |
vapt |
|
|
| Sun, 15 Mar 2026 17:49:52 GMT |
TryHackMe — Takeover Writeup |
subdomain-takeover |
|
|
| Tue, 14 Apr 2026 17:24:57 GMT |
PAM Cleanup in Practice: Discovery, Risk Triage and Lifecycle Gov... |
cyber-sec |
|
|
| Sun, 12 Apr 2026 02:19:51 GMT |
WHEN "NOT A VULNERABILITY" GETS PATCHED IN 72 HOURS By Ahmed Bata... |
security-research |
|
|
| Mon, 26 Jan 2026 07:25:06 GMT |
How Forgotten DNS Records Lead to Subdomain Takeovers |
subdomain-takeover |
|
|
| Sat, 28 Mar 2026 06:56:48 GMT |
The Definitive Guide to Secret Management in Python AI Projects |
api-key |
|
|
| Wed, 29 Apr 2026 21:10:16 GMT |
How I was able to hack more than 300 website |
hacking |
|
|
| Mon, 27 Apr 2026 12:46:01 GMT |
Four Scenarios for the Future of AppSec in the Age of Mythos |
application-security |
|
|
| Fri, 29 Aug 2025 04:43:21 GMT |
9. The Secret Power of Google Dorking |
dorking |
|
|
| Sat, 28 Mar 2026 17:58:43 GMT |
I Built a Remote Code Execution Engine. |
remote-code-execution |
|
|
| Thu, 29 Jan 2026 05:03:15 GMT |
Subdomain Takeover: Understanding, Detecting, and Recovering from... |
subdomain-takeover |
|
|
| Wed, 29 Apr 2026 03:25:26 GMT |
How a Simple Google Dork Led Me to an XSS on Ford Motor Company &... |
bug-bounty-tips, xss-attack, bug-bounty-writeup |
|
|
| Mon, 27 Apr 2026 09:39:12 GMT |
Top Cyber Security Tools Every Beginner Should Learn in 2026 |
cybersecurity-tools |
|
|
| Tue, 28 Apr 2026 16:40:18 GMT |
How I Discovered a Cognito Misconfiguration That Bypassed Corpora... |
bug-bounty-tips, bug-bounty-writeup, security-research |
|
|
| Mon, 27 Apr 2026 17:51:01 GMT |
This “Low Severity� XSS Turned Into a Payout I Wasn’t Expec... |
bug-bounty-tips |
|
|
| Tue, 18 Nov 2025 08:33:41 GMT |
A Chain of Vulnerabilities Leading to Critical Information Disclo... |
bug-bounty-program |
|
|
| Sun, 23 Feb 2025 11:17:25 GMT |
$1000-$10k worth Leaks via Github Secret Dorks |
github-dorking |
|
|
| Fri, 13 Mar 2026 14:55:26 GMT |
Web Security Series #2 — Bypassing Authentication via MFA Tampe... |
bug-bounty-hunting |
|
|
| Sat, 11 Apr 2026 09:59:14 GMT |
The Symmetry of Recon: Active vs. Passive Discovery in Bug Bounty |
shodan |
|
|
| Tue, 14 Apr 2026 04:51:21 GMT |
Top Cybersecurity Tools Experts Use |
cybersecurity-tools |
|
|
| Tue, 23 Sep 2025 13:01:51 GMT |
Why Email Marketing Is the Secret Growth Tool for Directory Websi... |
directory-listing |
|
|
| Mon, 27 Apr 2026 14:40:58 GMT |
Walkthrough: Automating Security Scans - Using Lynis Auditing Sof... |
cve |
|
|
| Tue, 14 Apr 2026 09:57:40 GMT |
Pentester Lab 06 Writeup |
recon |
|
|
| Mon, 13 Apr 2026 09:28:55 GMT |
EspoCRM v9.3.4: From Extension Upload to Remote Code Execution (R... |
rce |
|
|
| Thu, 16 Apr 2026 18:45:06 GMT |
PENTEST: A arte da invasão ética e o caminho para a Segurança ... |
pentest |
|
|
| Wed, 29 Apr 2026 01:46:01 GMT |
Active Directory : NTLM |
pentesting |
|
|
| Wed, 29 Apr 2026 07:27:12 GMT |
Hacking Buku Tamu: Eksperimen Sederhana Membedah Celah XSS |
xss-attack |
|
|
| Tue, 03 Feb 2026 17:12:47 GMT |
My First Week: 3 Business Logic Bugs in Major E-Commerce |
bug-bounty-program |
|
|
| Sun, 26 Jan 2025 19:08:11 GMT |
Matrix strike’s back against honesty from a power stance |
web-pentest |
|
|
| Tue, 13 Jan 2026 13:27:13 GMT |
Hacking “Time�: When Critical Infrastructure Forgets to Set a... |
vulnerability-disclosure |
|
|
| Fri, 17 Apr 2026 13:50:40 GMT |
From Image Upload to Admin Panel: How a Simple SSRF Led to Massiv... |
ssrf |
|
|
| Sun, 17 Aug 2025 19:26:05 GMT |
ï·½ |
bug-bounty-program |
|
|
| Tue, 18 Nov 2025 13:26:47 GMT |
GitHub Dorking: The Hunter’s Guide to Finding Secrets in Public... |
github-dorking |
|
|
| Mon, 20 Apr 2026 17:13:22 GMT |
PortSwigger Lab : Reflected XSS into HTML context with nothing en... |
xss-vulnerability |
|
|
| Wed, 29 Apr 2026 23:22:25 GMT |
What happens when the strong one breaks? |
vulnerability |
|
|
| Tue, 28 Apr 2026 06:08:17 GMT |
The Intigriti 0426 Northstar Notes: Chaining Mass Assignment & Pa... |
xss-attack |
|
|
| Mon, 23 Mar 2026 21:03:28 GMT |
SOC129 — Successful Local File Inclusion (EventID: 63) |
local-file-inclusion |
|
|
| Wed, 29 Apr 2026 16:18:46 GMT |
HTB Series — Facts (Easy Box) |
penetration-testing |
|
|
| Wed, 29 Apr 2026 19:32:08 GMT |
Azure Policy: Baking Security In Part 4 |
information-security |
|
|
| Wed, 29 Apr 2026 18:34:02 GMT |
Why Trust May Be the Biggest Hidden Vulnerability in Cloud Securi... |
information-security, cyber-security-awareness |
|
|
| Tue, 14 Apr 2026 13:07:05 GMT |
My “Gemini� Is Named Mike |
dorks |
|
|
| Mon, 02 Feb 2026 11:59:59 GMT |
El cashback está en el aire |
bounty-program |
|
|
| Sat, 11 Apr 2026 18:05:11 GMT |
Ha0ker is the online identity of Gagandeep Singh, a professional ... |
bugcrowd |
|
|
| Sun, 17 Aug 2025 17:58:45 GMT |
$$$ How I Exploited a Business Logic Flaw to Slash Product Prices... |
bug-bounty-program |
|
|
| Mon, 27 Apr 2026 16:53:43 GMT |
What AppSec Engineers Actually Do (and Why It Matters) |
application-security |
|
|
| Wed, 17 Dec 2025 09:57:30 GMT |
The Mother Lode: Hacking with GitHub Dorking |
github-dorking |
|
|
| Sat, 04 Apr 2026 05:31:01 GMT |
Shodan + Censys Internet Ka X-Ray: Bina Scan Kiye Sab Kuch Dekho!... |
shodan |
|
|
| Sat, 14 Feb 2026 19:02:25 GMT |
XSS WAF Bypass: 3 Tricks to Beat Alert Blockers |
xss-bypass |
|
|
| Mon, 13 Apr 2026 22:53:20 GMT |
CVE-2023–6972 Wordpress Backup Migration ≤1.3.9 Arbitrary Fil... |
exploit, rce, security-research |
|
|
| Tue, 28 Apr 2026 18:01:02 GMT |
I Was Testing a “URL Preview� Feature… and Ended Up Inside ... |
pentesting, bug-bounty-writeup |
|
|
| Sun, 07 Dec 2025 06:18:32 GMT |
Breaking the Perimeter: How My Custom Python Tool Bypassed a Fede... |
vdp |
|
|
| Thu, 09 Apr 2026 19:37:25 GMT |
Pentest Aşamaları Nelerdir? |
pentest |
|
|
| Wed, 29 Apr 2026 11:19:12 GMT |
$500 OAuth Account Fusion Pre-Takeover Attack |
hackerone, bug-bounty-writeup |
|
|
| Wed, 29 Apr 2026 01:59:00 GMT |
A Camping Trip… and My Orders Were Suddenly Exposed |
idor |
|
|
| Mon, 20 Apr 2026 04:31:04 GMT |
Google Cloud Storage Integration Guide (Node.js) |
file-upload |
|
|
| Fri, 10 Nov 2023 03:38:01 GMT |
Apache error.log advanced Log poisoning RCE |
log-poisoning |
|
|
| Fri, 24 Apr 2026 10:26:01 GMT |
¿Estás emocionado por el próximo partido entre FC Barcelona y ... |
bounty-program |
|
|
| Sun, 19 Apr 2026 03:17:06 GMT |
Security Questions Bypassed to Change User’s Password |
hackerone |
|
|
| Mon, 02 Feb 2026 17:05:37 GMT |
Lab: Web cache poisoning to exploit a DOM vulnerability via a cac... |
web-cache-poisoning |
|
|
| Tue, 14 Apr 2026 21:27:21 GMT |
Language-Specific File Upload Exploits and EXIF-Based Attacks |
rce |
|
|
| Wed, 22 Apr 2026 23:39:11 GMT |
Authentication bypass via unauthenticated JWT generation on a tel... |
shodan |
|
|
| Tue, 28 Apr 2026 07:09:41 GMT |
owockibot: The Bounty Board Powering the Agent Economy |
bounty-program |
|
|
| Wed, 29 Apr 2026 16:56:27 GMT |
When a Git Redirect Carries Your Credentials With It: Finding an ... |
security-research |
|
|
| Wed, 29 Apr 2026 23:27:52 GMT |
XSS Sistemi Nasıl Manipüle Eder? |
pentesting, xss-attack |
|
|
| Wed, 25 Mar 2026 08:34:09 GMT |
Improper Input Handling Leading to Client Side Code Execution and... |
bug-bounty-hunter, vulnerability-disclosure |
|
|
| Tue, 14 Apr 2026 18:41:03 GMT |
CVE-2026–39980 Analysis and POC |
exploit |
|
|
| Mon, 17 Nov 2025 23:45:18 GMT |
DorkFi: The Triumph of a Team You Can Trust |
dorks |
|
|
| Fri, 24 Apr 2026 18:42:37 GMT |
The HTTP 303 Hack — From Python HTTP Client Defaults to AWS Cre... |
ssrf |
|
|
| Mon, 27 Apr 2026 06:17:15 GMT |
Upload รูปภาพขึ้น Google Cloud Storage �บ... |
file-upload |
|
|
| Mon, 16 Mar 2026 07:31:29 GMT |
How I hacked AI Agent and worth bounty of $$$$ |
bugcrowd |
|
|
| Fri, 24 Jan 2025 09:34:52 GMT |
A new Holistic temple opening InLeeds |
web-pentest |
|
|
| Sat, 28 Feb 2026 14:32:47 GMT |
TryHackMe CTF Walkthrough- Love at First Breach 2026: Valenfind |
lfi |
|
|
| Tue, 22 Apr 2025 10:38:20 GMT |
Trump’s Tariffs Cut Out Censys — ZoomEye Steps In Strong! |
zoomeye |
|
|
| Sun, 28 Dec 2025 08:13:44 GMT |
Subzy Tool |
subdomain-takeover |
|
|
| Tue, 28 Apr 2026 09:32:08 GMT |
Why Most Penetration Testing Reports Fail (And What a Good One Lo... |
application-security |
|
|
| Fri, 24 Apr 2026 12:35:08 GMT |
Broken Authentication: A Critical Risk to User Identity and Appli... |
vapt |
|
|
| Thu, 26 Dec 2024 15:23:03 GMT |
GitHub Dorking List: The Ultimate Guide to Exploring and Securing... |
github-dorking |
|
|
| Fri, 17 Apr 2026 04:53:23 GMT |
How I Found an Exposed Google Maps API Key on a Global Brand’s ... |
vdp |
|
|
| Tue, 24 Feb 2026 23:01:09 GMT |
A Step-by-Step Guide to Uncovering Vulnerabilities in a Mobile Ap... |
lfi |
|
|
| Tue, 28 Apr 2026 17:16:03 GMT |
Mobile App Testing: Why Most Bugs Are Not Found — They Escape |
bugs |
|
|
| Tue, 14 Apr 2026 04:36:01 GMT |
XSS Cross-Site Scripting Zero Se Hero: Browser Ko Apna Weapon Ban... |
cross-site-scripting |
|
|
| Wed, 29 Apr 2026 15:00:54 GMT |
When AI Coding Assistants Become Attack Vectors: Cursor Vulnerabi... |
application-security |
|
|
| Fri, 24 Apr 2026 12:58:35 GMT |
When an Image Becomes an Attack: Exploiting SVG File Upload Vulne... |
file-upload |
|
|
| Sun, 19 Apr 2026 10:26:35 GMT |
Reflected XSS Context |
xss-vulnerability |
|
|
| Sun, 05 Apr 2026 20:11:41 GMT |
I Tried Logging In… and Accidentally Did Responsible Disclosure... |
vdp |
|
|
| Wed, 29 Apr 2026 18:15:14 GMT |
Is Your Website Really Secured? Check This ! |
penetration-testing |
|
|
| Sat, 11 Apr 2026 04:30:12 GMT |
Introduction to Cross-Site Scripting (XSS) — TryHackMe Walkthro... |
cross-site-scripting |
|
|
| Wed, 29 Apr 2026 18:17:30 GMT |
The Rise of Hackbots: How AI Is Transforming Cybersecurity |
hackerone |
|
|
| Wed, 11 Feb 2026 19:07:33 GMT |
Google Search Operators You Can Use |
google-dork |
|
|
| Fri, 17 Apr 2026 16:11:01 GMT |
Mirage (LFI) WebVerse |
lfi |
|
|
| Sat, 21 Mar 2026 20:37:31 GMT |
Using Nmap Scanner |
vulnerability-scanning |
|
|
| Sun, 13 Jul 2025 16:32:21 GMT |
ProConOS Exposed: What ICS Security Teams Need to Know |
censys |
|
|
| Mon, 30 Mar 2026 12:28:22 GMT |
API Access Explained: Everything You Need to Know to Get Started |
api-key |
|
|
| Tue, 10 Feb 2026 23:04:46 GMT |
Effective Dorking Tools |
dorking |
|
|
| Thu, 20 Nov 2025 09:45:04 GMT |
Timber Doors in Surrey: Style, Durability, and Value Explained |
dorking |
|
|
| Sun, 05 Apr 2026 05:02:34 GMT |
Exploiting an IPv6 Remote Code Execution Vulnerability: A Practic... |
remote-code-execution |
|
|
| Wed, 18 Mar 2026 10:03:26 GMT |
Web Security Series #7 — Exploiting Blind SQL Injection via Ses... |
bug-bounty-hunting |
|
|
| Thu, 23 Apr 2026 19:21:01 GMT |
Security Assessment: 23andMe Web Platform |
security-research |
|
|
| Thu, 02 Apr 2026 16:25:47 GMT |
Why Most Recon Pipelines Break After a Week |
recon |
|
|
| Tue, 24 Feb 2026 07:38:15 GMT |
Glassdoor’s IDOR vulnerability to retrieve email addresses of a... |
bounty-program |
|
|
| Wed, 29 Apr 2026 08:11:01 GMT |
⚙� 07. — JWT authentication bypass via algorithm confusion |
web-security |
|
|
| Wed, 08 Apr 2026 20:24:00 GMT |
Stop Guessing XSS Payloads |
cross-site-scripting |
|
|
| Tue, 21 Apr 2026 13:33:52 GMT |
Kioptrix: 2014 — VulnHub Walkthrough pChart LFI + PhpTax RCE to... |
lfi |
|
|
| Wed, 22 Apr 2026 13:21:41 GMT |
Pickle Rick Challenge — A Short Comprehension |
pentest |
|
|
| Mon, 27 Apr 2026 10:35:47 GMT |
CVE-2026–41505: How a Two-Letter Import Broke Authentication Se... |
cve |
|
|
| Fri, 17 Apr 2026 19:01:54 GMT |
The Ultimate Guide to Wayback Machine Dorking for Deleted Leaks |
google-dorking, dorking |
|
|
| Sat, 11 Apr 2026 19:07:06 GMT |
Linux Kernel Use After Free Exploitation Technique in Linux Kerne... |
exploit |
|
|
| Wed, 29 Apr 2026 18:33:15 GMT |
Implementing a Firewall |
information-technology |
|
|
| Fri, 17 Apr 2026 15:51:57 GMT |
The 2026 Shodan Dork Bible: Finding Exposed Jenkins, Grafana, and... |
google-dork, shodan |
|
|
| Mon, 27 Jan 2025 16:51:28 GMT |
The man who suffered 11 years in hell for freedom has now been fr... |
web-pentest |
|
|
| Mon, 06 Apr 2026 18:35:09 GMT |
Manual vs Automated Security Testing in the Age of AI: A Security... |
vulnerability-scanning |
|
|
| Sun, 19 Apr 2026 04:31:01 GMT |
SSRF Server-Side Request Forgery: Server Ko Apna Agent Banao, Int... |
ssrf |
|
|
| Mon, 27 Apr 2026 02:31:01 GMT |
AI for Frontend Developers — Day 37 |
file-upload |
|
|
| Wed, 29 Apr 2026 18:42:06 GMT |
Your Clicks, Your Secrets: Inside Google’s Data Universe |
information-technology |
|
|
| Wed, 25 Mar 2026 18:14:32 GMT |
Keterbukaan Informasi atau Terlalu Terbuka? |
information-disclosure |
|
|
| Wed, 07 Jan 2026 00:58:19 GMT |
Why Your Cache Rules are Leaking User Data (Web Cache Deception) |
web-cache-poisoning |
|
|
| Tue, 28 Apr 2026 21:23:12 GMT |
Prototype Pollution |
xss-vulnerability |
|
|
| Mon, 20 Apr 2026 09:11:54 GMT |
MCP Security Testing | Using Burp Suite |
hackerone |
|
|
| Sat, 18 Apr 2026 16:02:30 GMT |
When the Protector Becomes the Vector: Exploiting Microsoft Defen... |
exploit |
|
|
| Mon, 27 Apr 2026 02:01:01 GMT |
The Backend Engineer’s SSRF Playbook: Attack Vectors and Fixes ... |
ssrf |
|
|
| Mon, 20 Apr 2026 12:05:38 GMT |
CVSS 10.0. No Patch. The Admin Endpoint Is Just Open. |
ssrf |
|
|
| Wed, 29 Apr 2026 08:21:01 GMT |
⚙� 08. — JWT authentication bypass via algorithm confusion ... |
web-security |
|
|
| Tue, 04 Nov 2025 07:31:55 GMT |
Google Dorking |
dorks |
|
|
| Sun, 14 Dec 2025 06:37:06 GMT |
My Bug Bounty Diary |
subdomain-enumeration |
|
|
| Sun, 05 Apr 2026 13:27:30 GMT |
The Vault Sentry — A Startup’s Strategic Edge in Cybersecurit... |
api-key |
|
|
| Thu, 02 Apr 2026 17:35:36 GMT |
How I Found a Subdomain Takeover via BetterUptime |
subdomain-takeover |
|
|
| Sat, 25 Apr 2026 23:23:58 GMT |
How to Avoid Hardcoding API Keys in mcp.json |
api-key |
|
|
| Wed, 29 Apr 2026 18:27:25 GMT |
TryHackMe | Basic Vulnerability Identification Techniques | Wri... |
vulnerability |
|
|
| Tue, 14 Apr 2026 16:41:14 GMT |
Is Bug Bounty a Good Long-Term Career? The Reality in 2026 |
bug-bounty-hunter |
|
|
| Mon, 16 Feb 2026 08:42:31 GMT |
Lab: Exploiting HTTP request smuggling to perform web cache poiso... |
web-cache-poisoning |
|
|
| Mon, 20 Apr 2026 13:01:27 GMT |
AI-Driven Penetration Testing: Integrating Kali Linux Arsenal wit... |
pentest |
|
|
| Fri, 17 Apr 2026 06:30:17 GMT |
Resumable File Uploads in the Browser Using the File System Acces... |
file-upload |
|
|
| Thu, 14 Aug 2025 10:54:38 GMT |
Unlocking the Hidden Power of Search Engines |
censys |
|
|
| Thu, 27 Mar 2025 23:46:11 GMT |
Make Break and Betrayal |
web-pentest |
|
|
| Sun, 15 Mar 2026 16:45:35 GMT |
Web Security Series #4 — Discovering Unauthorized Resources via... |
bug-bounty-hunting |
|
|
| Fri, 27 Mar 2026 03:29:10 GMT |
TryHackMe — File Inclusion (Walkthrough) |
file-inclusion |
|
|
| Wed, 29 Apr 2026 19:42:13 GMT |
Here are powerful Google dorks for bug bounty hunting, |
bug-bounty |
|
|
| Thu, 20 Nov 2025 17:16:47 GMT |
The Health Factor: How DorkFi Keeps Your Position Safe |
dorks |
|
|
| Fri, 24 Apr 2026 15:44:54 GMT |
File Inclusion |
local-file-inclusion |
|
|
| Wed, 08 Apr 2026 08:46:11 GMT |
Practical JavaScript Recon for Bug Bounty: A Real-World Passive-F... |
recon |
|
|
| Thu, 12 Mar 2026 18:45:23 GMT |
Pulse-Zero: Atomic Memory Slicing and Sub-Layer Evasion via x64 A... |
cyber-sec |
|
|
| Thu, 29 Jan 2026 21:21:39 GMT |
Turning Fuzzing Into $2,550: How a Simple Bug Gave Me Access to E... |
bounties |
|
|
| Fri, 03 Apr 2026 07:21:16 GMT |
Why API Key Security Should Be Your Startup’s First Priority |
api-key |
|
|
| Mon, 20 Apr 2026 15:25:32 GMT |
Price manipulation(How a Simple OTP Flaw Could Lead to Full Accou... |
bugbounty-writeup |
|
|
| Fri, 19 Dec 2025 20:23:57 GMT |
How I Found an Unauthenticated XXE That Allowed Arbitrary File Re... |
vulnerability-disclosure |
|
|
| Wed, 29 Apr 2026 12:28:16 GMT |
The Attack Surface Is No Longer a Surface |
cve |
|
|
| Fri, 27 Mar 2026 11:58:55 GMT |
Why Beginners Fail in Bug Bounty (And How to Fix It in 2026) |
bug-bounty-hunter |
|
|
| Mon, 16 Mar 2026 18:05:08 GMT |
xss0r V6 is Finally Released! |
xss-bypass |
|
|
| Tue, 23 Dec 2025 18:32:40 GMT |
The Night I Found a Backup ZIP File Sitting in Plain Sight —... |
bounties |
|
|
| Thu, 09 Apr 2026 15:25:42 GMT |
The Real AI Concern Is Not Art or Jobs, It Is Cybersecurity |
cyber-sec |
|
|
| Wed, 29 Apr 2026 17:06:59 GMT |
How I mistakenly Crushed My Senior Year Project before Demo Day? |
application-security |
|
|
| Mon, 27 Apr 2026 10:27:56 GMT |
Vulnerability Assessment and Penetration Testing Services in Indi... |
vapt |
|
|
| Thu, 26 Mar 2026 00:32:02 GMT |
Révolution Lumière |
lfi |
|
|
| Mon, 06 Apr 2026 13:55:29 GMT |
The 7 Golden Rules of Vulnerability Scanning |
vulnerability-scanning |
|
|
| Fri, 24 Apr 2026 12:52:20 GMT |
I Changed a Number — and Accessed Another User’s Data |
idor |
|
|
| Sun, 26 Apr 2026 15:04:51 GMT |
Critical SQL Injection in Sourcecodester Complaint Management Sys... |
cve |
|
|
| Wed, 29 Apr 2026 20:01:01 GMT |
The Form Is Soft. The Substance Is Not. |
information-disclosure |
|
|
| Wed, 29 Apr 2026 13:36:38 GMT |
Blinded by 403: How I Almost Missed a Critical .git Exposure (On ... |
vulnerability, bugs |
|
|
| Wed, 29 Apr 2026 17:35:34 GMT |
The Real Danger of AI Is Not Robots — It’s Losing Ourselves |
information-technology |
|
|
| Tue, 28 Apr 2026 05:09:20 GMT |
The Real Meaning of a “Bug� |
bugs |
|
|
| Fri, 13 Mar 2026 02:31:00 GMT |
How I Use Google Dorking to Find Hidden Vulnerabilities |
google-dorking, google-dork |
|
|
| Wed, 29 Apr 2026 10:08:32 GMT |
Not Our Fault. Part 2: Rituals |
bugs |
|
|
| Tue, 28 Apr 2026 07:24:56 GMT |
Cross-Site Scripting (XSS): Dari Celah Sederhana ke Ancaman Seriu... |
xss-attack, cross-site-scripting |
|
|
| Wed, 15 Apr 2026 10:36:07 GMT |
Claude AI Discovers Zero-Day RCE in Vim and Emacs: The Dawn of AI... |
rce |
|
|
| Sat, 18 Apr 2026 04:31:01 GMT |
IDOR Insecure Direct Object Reference: ID Badlo, Data Dekho, Boun... |
idor |
|
|
| Mon, 11 Dec 2023 18:17:01 GMT |
Exploiting a Log Poisoning. |
log-poisoning |
|
|
| Wed, 16 Jul 2025 12:07:42 GMT |
Hackers Love This 1979 Protocol (Because It Can’t Defend Itself... |
censys |
|
|
| Wed, 29 Apr 2026 22:46:05 GMT |
Basic Pentesting: From SMB Enumeration to Root via SSH Key Exploi... |
infosec |
|
|
| Fri, 03 Apr 2026 23:30:20 GMT |
Security Advisory: QuickLaunch SSO Platform — Unauthenticated C... |
information-disclosure |
|
|
| Tue, 24 Mar 2026 13:18:44 GMT |
Information disclosure in version control history | Lab-05 |
information-disclosure |
|
|
| Wed, 22 Apr 2026 20:24:32 GMT |
URL-Based XSS |
xss-vulnerability |
|
|
| Fri, 01 Aug 2025 06:17:06 GMT |
15,000 Critical Systems Are Exposed — Thanks to This Outdat... |
censys |
|
|
| Thu, 09 Apr 2026 17:39:27 GMT |
From 401 to BAC: How a Refresh Broke Workspace Authorization |
vulnerability-disclosure |
|
|
| Tue, 23 Dec 2025 06:58:24 GMT |
How I Found Vulnerabilities in NASA and Got into the Hall of Fame |
vulnerability-disclosure |
|
|
| Fri, 17 Apr 2026 08:58:13 GMT |
You Can’t Hack What You Don’t See: Reconnaissance and Nmap Ex... |
vapt |
|
|
| Fri, 07 Feb 2025 05:12:28 GMT |
Do You Struggle Finding Internal/Hidden Subdomains? Recon part 5 |
subdomain-enumeration |
|
|
| Fri, 13 Mar 2026 00:00:04 GMT |
File Inclusion | TryHackMe Write-up |
file-inclusion |
|
|
| Wed, 29 Apr 2026 04:37:40 GMT |
How a Simple Google Dork Led Me to a Critical Authentication Bypa... |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Wed, 25 Feb 2026 14:23:06 GMT |
Lo-Fi TryHackMe Writeup |
lfi |
|
|
| Tue, 21 Apr 2026 10:47:26 GMT |
Validating My External Attack Surface: A Production-Ready Nuclei ... |
vulnerability-scanning |
|
|
| Tue, 28 Apr 2026 11:47:05 GMT |
What Tools Do Cyber Security Experts Actually Use Every Day? (And... |
cybersecurity-tools |
|
|
| Thu, 09 Apr 2026 17:40:41 GMT |
I Got Tired of Running 15 Different Nmap Commands. So I Built My ... |
vulnerability-scanning |
|
|
| Mon, 09 Mar 2026 06:56:21 GMT |
File Inclusion Vulnerability: Easy concept explanation |
file-inclusion |
|
|
| Wed, 29 Apr 2026 14:32:10 GMT |
Self-XSS + CSRF Leading to Account Takeover (50-Character Payload... |
bug-bounty, xss-attack, bugbounty-writeup |
|
|
| Mon, 27 Apr 2026 18:53:00 GMT |
We Are the Ones We Have Been Waiting For |
information-disclosure |
|
|
| Thu, 13 Mar 2025 18:09:56 GMT |
How I Found Sensitive Information using Github Dorks in Bug Bount... |
github-dorking |
|
|
| Wed, 29 Apr 2026 22:15:32 GMT |
The Risk of Being Known |
vulnerability |
|
|
| Sun, 21 Sep 2025 07:02:30 GMT |
Affordable but Vulnerable? The Dark Side of CMORE HMI |
censys |
|
|
| Tue, 21 Apr 2026 04:56:55 GMT |
Before You Test Anything, Understand What the System Is Protectin... |
bug-bounty-hunter, vapt |
|
|
| Mon, 06 Apr 2026 10:39:59 GMT |
Bug Bounty / Web Application Security Hunting Checklist - 2026 XS... |
bug-bounty-hunter |
|
|
| Tue, 21 Apr 2026 12:21:13 GMT |
95% of PII Redaction Doesn’t Need an LLM. The Other 5% Is Where... |
information-disclosure |
|
|
| Tue, 28 Apr 2026 06:01:24 GMT |
Microsoft Confirms Active Exploitation of Windows Shell CVE-2026â... |
bugs |
|
|
| Mon, 23 Mar 2026 06:32:32 GMT |
What Is Remote Code Execution (RCE)? How It Works, Risks & Preven... |
remote-code-execution |
|
|
| Sat, 14 Mar 2026 01:59:36 GMT |
LFI/RFI |
lfi |
|
|
| Sun, 19 Apr 2026 16:20:35 GMT |
500$ IDOR on a Public Program |
idor |
|
|
| Sun, 26 Apr 2026 16:31:24 GMT |
��♂� How I Find Critical Data Leaks Using Just Google Sea... |
google-dork |
|
|
| Mon, 27 Apr 2026 08:54:22 GMT |
Mastering CVE, CWE, CVSS, and NVD: A Practical Guide for Modern C... |
cve |
|
|
| Wed, 18 Feb 2026 04:39:59 GMT |
​"Beyond the Alert Box: Demonstrating Real-World XSS Impact" |
xss-bypass |
|
|
| Wed, 29 Apr 2026 11:50:44 GMT |
Lab: Blind SQL injection with time delays and information retriev... |
web-security |
|
|
| Wed, 29 Apr 2026 16:19:13 GMT |
什麼是 Denial of Service (DoS) 攻擊? |
information-security |
|
|
| Sat, 06 Dec 2025 06:43:54 GMT |
The Midnight Pwn: How a News Alert Led to a Critical Bounty |
vulnerability-disclosure |
|
|
| Fri, 24 Apr 2026 21:44:10 GMT |
TryHackMe Recruit Writeup |
ssrf |
|
|
| Sun, 12 Apr 2026 02:23:24 GMT |
WHEN "NOT A VULNERABILITY" GETS PATCHED IN 72 HOURS By Ahmed Bata... |
security-research |
|
|
| Fri, 23 May 2025 06:02:53 GMT |
Search Skills |
censys |
|
|
| Wed, 25 Feb 2026 02:51:18 GMT |
Impact Scenario Hackviser |
local-file-inclusion |
|
|
| Thu, 02 Apr 2026 15:28:31 GMT |
O Primeiro passo é o mais importante! |
pentest |
|
|
| Fri, 03 Apr 2026 08:30:09 GMT |
Inside The Vault Sentry — How We Detect and Stop API Key Leaks |
api-key |
|
|
| Wed, 29 Apr 2026 21:27:16 GMT |
Where does hacked data go and how is it used? |
hacking, pentesting |
|
|
| Fri, 27 Feb 2026 00:44:16 GMT |
Walkthrough: Web Application Attacks - XSS, SQL Injections, Direc... |
local-file-inclusion |
|
|
| Sat, 04 Apr 2026 04:41:46 GMT |
OpenTofu Security Scanner: How to Catch Misconfigurations Before ... |
vulnerability-scanning |
|
|
| Fri, 25 Jul 2025 16:41:01 GMT |
� SubDNS-UI: Build Your Own Subdomain + DNS Enumerator with a C... |
subdomain-enumeration |
|
|
| Tue, 28 Apr 2026 13:18:20 GMT |
25 Open-Source Cybersecurity Tools That Work Even When Your Budge... |
cybersecurity-tools |
|
|
| Fri, 20 Mar 2026 05:45:47 GMT |
Cloudflare WAF Bypass Leading to Reflected XSS via SVG Injection |
xss-bypass |
|
|
| Wed, 03 Dec 2025 23:26:26 GMT |
TryHackMe-TakeOver-WriteUp |
subdomain-takeover |
|
|
| Sat, 18 Apr 2026 06:01:33 GMT |
Everyone Is Doing Recon Wrong — And They Don’t Even Know It |
vapt |
|
|
| Wed, 08 Apr 2026 08:00:36 GMT |
Building a SOC Tool From Scratch as a Cybersecurity Student |
cybersecurity-tools |
|
|
| Wed, 11 Mar 2026 08:12:14 GMT |
The Bug Bounty Hunter Roadmap (2026): From Curious Beginner to Re... |
bug-bounty-hunting |
|
|
| Wed, 29 Apr 2026 12:52:39 GMT |
Build a Simple File Upload Website Using Azure Blob Storage |
file-upload |
|
|
| Fri, 19 Sep 2025 07:40:16 GMT |
How I Tracked Our Clients’ Device Versions Without Direct Repor... |
zoomeye |
|
|
| Tue, 28 Apr 2026 18:08:30 GMT |
The Automation Trap: Why Most Bug Bounty Hunters Work Harder, Not... |
bug-bounty-tips |
|
|
| Sun, 05 Apr 2026 08:08:21 GMT |
How I Built an Automated Recon Pipeline for Bug Bounty Hunting |
recon |
|
|
| Fri, 06 Mar 2026 12:01:01 GMT |
Salà de compras y terminé en Roma |
bounty-program |
|
|
| Mon, 27 Apr 2026 17:57:37 GMT |
Using Param Miner to Discover Parameters in Burp Suite: My Bug Bo... |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Wed, 29 Apr 2026 03:02:27 GMT |
I Built a Solid Two-Tier Architecture in AWS Using EC2 and RDS |
application-security |
|
|
| Tue, 14 Apr 2026 18:22:58 GMT |
File Upload Vulnerabilities |
remote-code-execution |
|
|
| Fri, 31 May 2024 13:29:16 GMT |
Map of the worlds best URLs 2025 |
log-poisoning |
|
|
| Mon, 27 Apr 2026 18:35:21 GMT |
How I Found My First Two SSRF CVEs |
cve |
|
|
| Thu, 19 Mar 2026 22:46:44 GMT |
How I Earned $76,000 From a Single Program on Bugcrowd |
bugcrowd |
|
|
| Mon, 17 Nov 2025 09:27:29 GMT |
200 reports, 11 valid bugs, 0 critical issues. Here’s everythin... |
vdp |
|
|
| Tue, 24 Mar 2026 17:48:00 GMT |
The Ultimate Bug Bounty Course: From Zero to Advanced Hacker 1 |
bug-bounty-hunting |
|
|
| Wed, 29 Apr 2026 13:59:27 GMT |
Finding an IDOR in Tesla From the Outside |
bug-bounty, bugcrowd |
|
|
| Wed, 08 Apr 2026 22:09:58 GMT |
How I Discovered a Blind SQL Injection in a Private program |
bugcrowd |
|
|
| Sat, 04 Apr 2026 17:32:35 GMT |
How I Earned $200 in 5 Minutes Using a Simple Broken Link Hijack... |
bug-bounty-hunter |
|
|
| Sun, 21 Sep 2025 03:55:56 GMT |
Is it easy to discover a critical vulnerability [P1]Â ? |
directory-listing |
|
|
| Fri, 17 Apr 2026 15:39:41 GMT |
Bug Bounty 2026: Why the “End of the World� is Actually a $50... |
bounties |
|
|
| Sat, 14 Feb 2026 22:03:31 GMT |
6 Hours, 6 Real-world Critical Bugs: A Case Study in Efficient Bu... |
cyber-sec |
|
|
| Mon, 27 Apr 2026 19:30:28 GMT |
XSS (Cross Site Scripting): Bug Hunter’s Exploitation Guide |
xss-attack |
|
|
| Sun, 19 Apr 2026 11:31:54 GMT |
Search Engine Discovery & Google Dorking: Turning Google into a R... |
google-dorking |
|
|
| Fri, 20 Mar 2026 11:44:04 GMT |
#Searchlight OSINT Writeup |
google-dorking |
|
|
| Wed, 01 Apr 2026 18:43:56 GMT |
Lab: SQL injection attack, listing the database contents on Oracl... |
web-pentest |
|
|
| Wed, 11 Feb 2026 21:37:40 GMT |
From Course Notes to CVE: How a GXPN Study Session Uncovered a 40... |
vulnerability-disclosure |
|
|
| Wed, 01 Apr 2026 09:33:58 GMT |
How to earn VDS in Vadeus Network [Rewards Center] |
bounty-program |
|
|
| Sat, 11 Apr 2026 14:24:38 GMT |
â� SOC287 — Arbitrary File Read on Checkpoint Security Gateway... |
lfi |
|
|
| Thu, 16 Apr 2026 10:24:30 GMT |
Why Every Business Needs a Penetration Test in 2026 |
pentest |
|
|
| Tue, 17 Mar 2026 09:18:53 GMT |
Web Security Series #6 — Exploiting SQL Injection to Extract Se... |
bug-bounty-hunting |
|
|
| Mon, 02 Mar 2026 00:00:27 GMT |
TakeOver | TryHackMe Write-up |
subdomain-takeover |
|
|
| Wed, 29 Apr 2026 18:42:32 GMT |
SOC VS GRC Analyst: Which Career is Better in 2026? |
information-security |
|
|
| Thu, 12 Mar 2026 22:51:26 GMT |
Payment Bypass That Let Me Get a Premium Course for $0 [Business... |
bugcrowd |
|
|
| Tue, 28 Apr 2026 07:06:40 GMT |
Application Security Testing (AST) Market Analysis and Future Out... |
application-security |
|
|
| Wed, 19 Nov 2025 19:44:02 GMT |
The Pulse of Liquidity: How DorkFi’s Interest Rates Adapt in Re... |
dorks |
|
|
| Wed, 25 Mar 2026 10:55:24 GMT |
METASPLOIT EXPLOIT |TRYHACKME PREMIUM |
cyber-sec |
|
|
| Thu, 26 Feb 2026 00:47:58 GMT |
From Shodan Recon to Multiple Security Flaws in the Same Program |
shodan |
|
|
| Wed, 25 Feb 2026 01:47:45 GMT |
How I Found a Path Traversal in the Rancher Dashboard via HAR Rep... |
web-pentest |
|
|
| Fri, 12 Dec 2025 06:49:56 GMT |
How Variable Data Technology is Transforming Postcard & Brochure ... |
vdp |
|
|
| Wed, 22 Apr 2026 07:32:56 GMT |
One Forged Packet, $292 Million Gone |
exploit |
|
|
| Mon, 13 Apr 2026 06:37:51 GMT |
File Inclusion on DVWA |
local-file-inclusion, file-inclusion |
|
|
| Sat, 25 Oct 2025 12:23:25 GMT |
How to find leaks on GitHub as a beginner. Logic is main key |
github-dorking |
|
|
| Mon, 20 Apr 2026 01:16:16 GMT |
Strored Xss |
xss-vulnerability |
|
|
| Sat, 14 Feb 2026 05:46:19 GMT |
CVE-2025–4406 Writeup: Stored XSS on wpForo Forum |
xss-bypass |
|
|
| Tue, 28 Apr 2026 21:01:19 GMT |
COMMON HTTP ERROR CODES & Bypass Techniques |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Sun, 26 Apr 2026 17:37:36 GMT |
How I Turned a “Harmless� Self-XSS into a Full Account Takeov... |
bug-bounty-writeup |
|
|
| Sun, 05 Apr 2026 18:11:17 GMT |
Information Disclosure Through Unrestricted API Endpoints |
information-disclosure |
|
|
| Wed, 30 Apr 2025 17:08:29 GMT |
Exploring Subdomains: What They Are and How to Find Them |
subdomain-enumeration |
|
|
| Wed, 15 Apr 2026 18:11:40 GMT |
A Real SSRF Story from HackerOne (Featuring IPv6 + Redirects) |
ssrf |
|
|
| Sun, 22 Oct 2023 19:57:30 GMT |
Performing a Log Poisoning Attack |
log-poisoning |
|
|
| Tue, 23 Sep 2025 06:36:22 GMT |
Mengamankan File Sensitif & Directory Listing website dengan .ht... |
directory-listing |
|
|
| Wed, 29 Apr 2026 13:48:36 GMT |
The Illusion: Bridging the Gap Between the LLM and the Perception... |
vulnerability |
|
|
| Thu, 26 Mar 2026 03:31:59 GMT |
IDOR on Tesla Disclosing Users’ Emails |
bug-bounty-hunter |
|
|
| Thu, 05 Mar 2026 21:41:26 GMT |
Finding a P1 in NASA: The Power of Google Dorking |
google-dork |
|
|
| Fri, 10 Apr 2026 14:53:24 GMT |
The Ultimate Guide to Proxying and Pentesting MCP Servers!! |
pentest |
|
|
| Thu, 02 Apr 2026 18:59:50 GMT |
File Inclusion (LFI/RFI) — Extracting Sensitive Data from confi... |
local-file-inclusion, file-inclusion |
|
|
| Mon, 20 Apr 2026 16:06:06 GMT |
IDOR: The $10,000 Bug Hiding in Plain Sight |
idor |
|
|
| Sun, 22 Feb 2026 13:02:39 GMT |
OtterCTF - Hopity Hop Reverse Engineering Walkthrough |
cyber-sec |
|
|
| Mon, 27 Apr 2026 20:32:13 GMT |
When Features Do More Than They Should |
bugcrowd |
|
|
| Mon, 20 Apr 2026 11:17:36 GMT |
How I Discovered A Critical Vulnerability In Bridge Reserve Manag... |
bugbounty-writeup |
|
|
| Mon, 09 Mar 2026 18:49:55 GMT |
Walkthrough: Vulnerability Scanning w/ OpenVAS |
vulnerability-scanning |
|
|
| Fri, 27 Mar 2026 11:01:08 GMT |
Finding XSS Through HTML Injection — Without Fuzzing Tools |
xss-bypass |
|
|
| Sun, 26 Apr 2026 15:30:11 GMT |
The Chatbot That Let Anyone Read, Write, and Execute |
hackerone |
|
|
| Wed, 15 Apr 2026 22:10:26 GMT |
All It Took Was a Negative Number: A Price Manipulation Story | ... |
bug-bounty-hunter |
|
|
| Sat, 25 Jan 2025 23:20:10 GMT |
Full GitHub Dorking guide: for OSINT and BugBounty (Reconnaissanc... |
github-dorking |
|
|
| Tue, 31 Mar 2026 07:57:14 GMT |
How I Test API Keys Using Only Burp Suite |
api-key |
|
|
| Tue, 03 Mar 2026 05:34:39 GMT |
Documenting my journey. |
cyber-sec |
|
|
| Wed, 29 Apr 2026 10:39:51 GMT |
SQL Injection: Ketika Satu Baris Input Bisa Meruntuhkan Seluruh D... |
web-security |
|
|
| Mon, 16 Feb 2026 14:31:00 GMT |
BOUNTY | HTB | Windows |Walkthrough | Write up |
bounties |
|
|
| Mon, 20 Apr 2026 05:11:01 GMT |
Stop Hardcoding Your API Keys |
api-key |
|
|
| Wed, 29 Apr 2026 20:12:54 GMT |
HackTheBox — PingPong (Insane Windows): Walkthrough |
penetration-testing, hacking |
|
|
| Tue, 21 Apr 2026 18:34:28 GMT |
From Zero Knowledge to First $1,000: The Honest Bug Bounty Timeli... |
hackerone |
|
|
| Wed, 29 Apr 2026 06:44:27 GMT |
How Good Are AI Agents at Finding Web Vulnerabilities (Part 3) |
application-security |
|
|
| Fri, 28 Jun 2024 14:51:14 GMT |
X-Forwarded HTTP header-ləri : Qısa izah |
log-poisoning |
|
|
| Thu, 23 Apr 2026 12:07:49 GMT |
Why BOLA is the #1 Threat and How to Automate the “Token Swapâ€... |
idor |
|
|
| Tue, 28 Apr 2026 02:00:23 GMT |
73 Fake VS Code Extensions Spread GlassWorm v2 Malware |
xss-attack |
|
|
| Mon, 20 Apr 2026 01:34:13 GMT |
I Asked AI To Hack My PHP App. It Did. Here’s How I Fixed It. |
cross-site-scripting |
|
|
| Sat, 06 Dec 2025 23:06:15 GMT |
Big News from DorkFi — PreFi Rewards Drop + Contest Live! |
dorks |
|
|
| Tue, 05 Aug 2025 00:19:11 GMT |
Breaking Recon with AMASS |
subdomain-enumeration |
|
|
| Wed, 22 Apr 2026 16:29:29 GMT |
Chaining Origin IP Leak to Blind SSRF |
ssrf |
|
|
| Wed, 29 Apr 2026 04:45:44 GMT |
How I Found My First RCE — CVE-2026–37748 |
remote-code-execution |
|
|
| Sun, 22 Mar 2026 10:40:15 GMT |
DVWA: File Inclusion Vulnerability (Low Security) |
local-file-inclusion, file-inclusion |
|
|
| Thu, 02 Oct 2025 06:59:46 GMT |
Endless Cashback Glitch:How I Unlocked Unlimited Free Orders with... |
bug-bounty-program |
|
|
| Wed, 14 Jan 2026 09:06:30 GMT |
Lab: Web cache poisoning via an unkeyed query string | Portswige... |
web-cache-poisoning |
|
|
| Thu, 26 Mar 2026 14:29:57 GMT |
Your SSH Keys, API Credentials, and AI Secrets Are at Risk — Th... |
api-key |
|
|
| Wed, 29 Apr 2026 09:56:51 GMT |
The Loud Failure: How a Broken WebSocket Leaked a Master Key to t... |
web-security |
|
|
| Sun, 08 Mar 2026 11:01:01 GMT |
I Paid $500 for AI Directory Listings. Here Is My Honest ROI Brea... |
directory-listing |
|
|
| Wed, 29 Apr 2026 14:14:58 GMT |
Part 2Â : Cross-Site Scripting (XSS) |
xss-attack, xss-vulnerability, xss-bypass |
|
|
| Sat, 25 Apr 2026 09:18:33 GMT |
Bug Bounty Series — Part 3 (HTTP Parameter Pollution) |
bug-bounty-hunter |
|
|
| Thu, 19 Mar 2026 22:19:50 GMT |
Vulnerability Scanning 101: How to Manage Your Vulnerabilities |
vulnerability-scanning |
|
|
| Wed, 25 Feb 2026 11:25:59 GMT |
Understanding Modern Cybersecurity Practices for Scalable SaaS Pr... |
vulnerability-scanning |
|
|
| Tue, 21 Apr 2026 14:42:50 GMT |
Web Security Series # 16— Exploiting Local File Inclusion (LFI) |
file-inclusion |
|
|
| Tue, 28 Apr 2026 20:00:52 GMT |
Official Blind XSS Platform Update (2026) |
xss-attack, xss-bypass |
|
|
| Sat, 18 Apr 2026 08:18:21 GMT |
Helium Challenge Batch 2 — WriteUp : IDOR & Stored XSS leads to... |
idor |
|
|
| Mon, 13 Apr 2026 05:39:47 GMT |
Yukthi CTF 2.0 Deep Dive: From JS Deobfuscation to Protocol-Level... |
idor |
|
|
| Sat, 07 Mar 2026 01:11:15 GMT |
The Silent Observer: A Deep Dive into Shodan Dorks for Security R... |
shodan |
|
|
| Sun, 08 Mar 2026 06:50:53 GMT |
XSS Inbound Attack: I Didn’t Steal Your Cookie. I Stole Your So... |
xss-bypass |
|
|
| Wed, 08 Apr 2026 19:31:38 GMT |
Pentester Labs Recon 00 write up |
recon |
|
|
| Mon, 20 Apr 2026 07:19:39 GMT |
Ffuf: The Tool That Helps You Find What Others Miss |
vapt |
|
|
| Sat, 18 Apr 2026 11:29:53 GMT |
What is VAPT Testing and Why Every Indian Business Needs It - C9L... |
vapt |
|
|
| Thu, 26 Feb 2026 13:54:44 GMT |
Poison — HTB |
lfi |
|
|
| Thu, 05 Mar 2026 21:45:19 GMT |
Berlin im Visier der Hacker: Warum jedes Unternehmen heute einen ... |
pentest |
|
|
| Tue, 21 Apr 2026 15:05:26 GMT |
Web Security Series #17 — Exploiting Local File Inclusion (LFI)... |
file-inclusion |
|
|
| Sat, 11 Apr 2026 05:12:45 GMT |
Pentester Labs Recon 02 Writeup |
recon |
|
|