| Wed, 15 Jul 2026 03:15:15 GMT |
From Prompt Injection to Multi-Step Tool Attacks: How AI Agent Se... |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 02:44:01 GMT |
AI 공격ìž�ì—�게 ‘가짜 비밀’ì�„ ì�½ížŒë‹¤â€¦í”„롬프íŠ... |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 03:23:44 GMT |
Common ASN Patterns Seen in Phishing Infrastructure |
bug-bounty, hacking |
Yes |
Yes |
| Wed, 15 Jul 2026 02:50:43 GMT |
Cara Melindungi Data Pribadi: Panduan Cybersecurity dan Hukum unt... |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 01:51:00 GMT |
The Cost of Quiet Data Leaks: Executive Liability and the Privacy... |
information-security, cyber-security-awareness |
Yes |
Yes |
| Wed, 15 Jul 2026 01:58:14 GMT |
API Fuzzing for Bug Bounty — Part 3: GraphQL Security — The C... |
bug-bounty, security, bug-bounty-tips, bug-bounty-writeup |
Yes |
Yes |
| Wed, 15 Jul 2026 02:55:30 GMT |
Di Era AI, Kemampuan Verifikasi Lebih Penting dari Kecepatan Berb... |
information-technology |
Yes |
Yes |
| Wed, 15 Jul 2026 00:41:00 GMT |
Shocking Truth About Retirement: Don’t Count on Your Kids! |
security |
Yes |
Yes |
| Wed, 15 Jul 2026 03:10:03 GMT |
Why AI Vendor Risk Is More Than Cybersecurity and Compliance |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 01:56:01 GMT |
I Detonated Real Ransomware in a VM. Here’s the Forensic Trail ... |
infosec |
Yes |
Yes |
| Wed, 15 Jul 2026 01:50:24 GMT |
Breaking CORSÂ : Hunting CORS Misconfigurations For Bug Bounty |
bug-bounty, web-security, bug-bounty-tips, bug-bounty-writeup |
Yes |
Yes |
| Wed, 15 Jul 2026 02:44:32 GMT |
Where Havenlon’s Innovation Actually Lies |
security |
Yes |
Yes |
| Wed, 15 Jul 2026 00:47:00 GMT |
Breaking AI Agents: What a Vendor Chatbot Told Me It Shouldn’t ... |
security, information-security |
Yes |
Yes |
| Wed, 15 Jul 2026 01:51:16 GMT |
This Tool Found An XSS Bug In 40 Seconds That I Missed Manually F... |
bug-bounty, penetration-testing, ethical-hacking |
Yes |
Yes |
| Wed, 15 Jul 2026 01:50:07 GMT |
Credential Stuffing Explained |
hacking, cyber-security-awareness |
Yes |
Yes |
| Wed, 15 Jul 2026 02:04:25 GMT |
Path for Success in Information Technology |
information-technology |
Yes |
Yes |
| Wed, 15 Jul 2026 02:45:53 GMT |
AIê°€ ì „ìž�ì •ë¶€ 표준 SW 결함 990ê±´ 찾았다…숫ìž�ë³´ë... |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 02:01:03 GMT |
��脅情資】從 Java RCE 到內網橫�:��� Defend... |
cybersecurity, rce |
Yes |
Yes |
| Wed, 15 Jul 2026 01:51:32 GMT |
I Asked the Frontend for Secrets, and It Said Yes |
bug-bounty, bug-bounty-tips, bug-bounty-writeup, bug-bounty-hunter |
Yes |
Yes |
| Wed, 15 Jul 2026 01:34:21 GMT |
EtiopÃa |
vulnerability |
Yes |
Yes |
| Wed, 15 Jul 2026 02:35:46 GMT |
خطة الطوارئ الرقمية: كيÙ� ØªØØµÙ† ØØ³Ø§Ø¨Ø§Ø... |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 02:14:38 GMT |
Principle of least privilege: AWS Roles |
security |
Yes |
Yes |
| Wed, 15 Jul 2026 02:58:40 GMT |
Let’s Get Vulnerable as Fuck: Smile for the Camera |
vulnerability |
Yes |
Yes |
| Wed, 15 Jul 2026 02:58:08 GMT |
Measuring the Defenders: An Honest Benchmark for AI-Agent (MCP) S... |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 01:54:29 GMT |
The Day Everything Went Wrong |
information-technology |
Yes |
Yes |
| Wed, 15 Jul 2026 02:31:00 GMT |
Digital Trust as Competitive Advantage — The Business Case |
cybersecurity |
Yes |
Yes |
| Wed, 15 Jul 2026 00:03:29 GMT |
How I Found a Cross-Student IDOR in Academy LMS That Leaked Corre... |
bug-bounty |
|
Yes |
| Wed, 15 Jul 2026 00:01:03 GMT |
GuÃa de Seguridad en LLM: Inyección de Prompts y Explotación d... |
bug-bounty, hacking |
|
Yes |
| Wed, 15 Jul 2026 00:01:03 GMT |
Red Team Domain Shepherding |
hacking |
|
Yes |
| Tue, 18 Nov 2025 18:12:40 GMT |
Dork Labs Awarded AWS Activate Startup Grant |
dorks |
|
|
| Tue, 23 Jun 2026 16:59:56 GMT |
The Internet Never Forgets : A Beginner’s Guide to OSINT |
recon |
|
|
| Mon, 06 Jul 2026 17:54:33 GMT |
Seeing Vulnerabilities Like an Artist [AD Edition] |
exploit |
|
|
| Sat, 04 Jul 2026 07:27:42 GMT |
Magento Exploit (WEB VERSION) old story (2017) |
exploit |
|
|
| Mon, 25 May 2026 09:26:41 GMT |
Web Önbelleği Zehirlenmesi |
web-cache-poisoning |
|
|
| Thu, 09 Jul 2026 11:30:10 GMT |
What Is VAPT and Why Every Business Needs It |
vapt |
|
|
| Sat, 11 Jul 2026 03:01:04 GMT |
Achieving Zero-Downtime AI for Security Research: Guide to Settin... |
security-research |
|
|
| Tue, 14 Jul 2026 13:12:05 GMT |
Bot Protection in 2026: A Practical Guide |
web-security |
|
|
| Sat, 11 Jul 2026 23:03:09 GMT |
Finding Reflected XSS Through Persistence |
xss-attack |
|
|
| Tue, 14 Jul 2026 21:01:01 GMT |
Network Security: How to Protect Your Business Before One Bad Cli... |
information-security |
|
|
| Wed, 01 Apr 2026 18:43:56 GMT |
Lab: SQL injection attack, listing the database contents on Oracl... |
web-pentest |
|
|
| Wed, 29 Apr 2026 14:14:58 GMT |
Part 2Â : Cross-Site Scripting (XSS) |
xss-bypass |
|
|
| Tue, 14 Jul 2026 14:30:00 GMT |
La diferencia entre encontrar vulnerabilidades y simular un ataqu... |
pentesting |
|
|
| Tue, 14 Jul 2026 18:01:00 GMT |
The Parameter That Redirects Nowhere: HTML Injection via redirect... |
bug-bounty, penetration-testing, bug-bounty-tips, bug-bounty-writeup |
|
|
| Thu, 11 Sep 2025 22:20:14 GMT |
It’s Coming: DorkFi Delivers PreFi Rewards Surge |
dorking |
|
|
| Sun, 07 Jun 2026 16:46:16 GMT |
METASPOITABLE 2 |
vulnerability-scanning |
|
|
| Mon, 06 Apr 2026 21:45:53 GMT |
Cookie(Çerez) Türleri ve Pentest Açısından Önemi |
web-pentest |
|
|
| Fri, 10 Nov 2023 03:38:01 GMT |
Apache error.log advanced Log poisoning RCE |
log-poisoning |
|
|
| Sun, 23 Feb 2025 11:17:25 GMT |
$1000-$10k worth Leaks via Github Secret Dorks |
github-dorking |
|
|
| Tue, 30 Jun 2026 05:13:55 GMT |
Post auth RCE in GeoSIG seismological equipment (GMSplus) |
pentest |
|
|
| Mon, 29 Jun 2026 18:05:45 GMT |
TryHackMe Passive Reconnaissance (versão em português) |
pentest |
|
|
| Sat, 18 Apr 2026 05:07:38 GMT |
We’re About to Stop Trusting What We See Online — And AI Is t... |
cyber-sec |
|
|
| Tue, 14 Jul 2026 16:11:23 GMT |
API Hacking Basics Every Bug Bounty Hunter Should Know |
bug-bounty, web-security |
|
|
| Thu, 09 Jul 2026 14:29:41 GMT |
One Wildcard Character — $88,337 from Google: How brutecat Brok... |
bugbounty-writeup |
|
|
| Mon, 13 Jul 2026 03:01:02 GMT |
The Wristband Problem |
application-security |
|
|
| Thu, 11 Jun 2026 04:44:15 GMT |
AtDork dorking tools |
google-dork |
|
|
| Mon, 13 Apr 2026 03:31:01 GMT |
Google Dorks Google Ko Bana Do Apna Hacking Tool: Free Mein Bugs ... |
github-dorking |
|
|
| Sun, 14 Dec 2025 06:37:06 GMT |
My Bug Bounty Diary |
subdomain-enumeration |
|
|
| Thu, 09 Oct 2025 18:33:05 GMT |
0-click Account Takeover via Punycode |
bug-bounty-program |
|
|
| Mon, 11 May 2026 04:25:50 GMT |
Google Dorking for Beginners: Ghosting the Network |
google-dorking |
|
|
| Sat, 25 Apr 2026 14:46:05 GMT |
File Inclusion— Skills Assesment (HTB) |
file-inclusion |
|
|
| Mon, 22 Jun 2026 17:59:47 GMT |
How I Recon a Target, Part Two: Now We Poke It |
recon |
|
|
| Mon, 13 Jul 2026 09:49:39 GMT |
Why “In QA� Isn’t Always the Right Status |
bugs |
|
|
| Fri, 26 Jun 2026 15:39:44 GMT |
Can We Define Fair and Ethical Use of AI? |
information-disclosure |
|
|
| Mon, 13 Jul 2026 13:58:30 GMT |
Five Things Your Scanner Will Never Catch |
application-security |
|
|
| Fri, 29 May 2026 17:22:37 GMT |
Cracking SameSite for a $2,000 Web Cache Deception |
web-cache-poisoning |
|
|
| Thu, 09 Jul 2026 06:01:01 GMT |
Linux Kernel Vulnerability CVE-2024–26582: How a kTLS Flaw Gran... |
cve |
|
|
| Tue, 22 Apr 2025 10:38:20 GMT |
Trump’s Tariffs Cut Out Censys — ZoomEye Steps In Strong! |
zoomeye |
|
|
| Fri, 10 Jul 2026 23:26:18 GMT |
Reflected XSS into HTML context with most tags and attributes blo... |
xss-attack |
|
|
| Thu, 02 Jul 2026 14:00:04 GMT |
Methodology over Automation: Deconstructing E-commerce Checkout L... |
hackerone |
|
|
| Sun, 12 Jul 2026 19:11:01 GMT |
Building a File Upload Scanning Pipeline for Laravel and S3 |
vulnerability-scanning |
|
|
| Mon, 16 Mar 2026 14:32:42 GMT |
Web Security Series #5 — Exploiting Broken Access Control via T... |
bug-bounty-hunting |
|
|
| Tue, 07 Jul 2026 08:03:26 GMT |
Insecure direct object references |
idor |
|
|
| Fri, 26 Jun 2026 06:46:44 GMT |
How Google Dorking Can Streamline Your SEO Research Process |
google-dorking |
|
|
| Mon, 13 Jul 2026 09:21:08 GMT |
The VAPT Chronicles — SIEM, Detection & Blue Team Concepts |
vapt |
|
|
| Wed, 11 Mar 2026 08:12:14 GMT |
The Bug Bounty Hunter Roadmap (2026): From Curious Beginner to Re... |
bug-bounty-hunting |
|
|
| Tue, 14 Jul 2026 12:52:09 GMT |
Server-Side Request Forgery: Exploiting and Fixing the SSRF Vulne... |
ssrf |
|
|
| Wed, 22 Apr 2026 23:39:11 GMT |
Authentication bypass via unauthenticated JWT generation on a tel... |
shodan |
|
|
| Mon, 13 Jul 2026 15:01:02 GMT |
How to Build High-Performance DevOps (via Accelerate) |
bugs |
|
|
| Tue, 14 Jul 2026 17:12:03 GMT |
Everyone building “AI pentesters� is focused on the wrong thi... |
pentesting |
|
|
| Sat, 09 May 2026 02:26:22 GMT |
How I Discovered a Reflected XSS Vulnerability on a Major German ... |
xss-bypass |
|
|
| Fri, 22 May 2026 21:10:59 GMT |
Recruit TryHackMe walkthrough |
lfi |
|
|
| Sat, 02 Aug 2025 14:15:23 GMT |
The Silent Risk in Your ICS: Why S7 Protocol Needs Security Atten... |
censys |
|
|
| Fri, 24 Apr 2026 10:26:01 GMT |
¿Estás emocionado por el próximo partido entre FC Barcelona y ... |
bounty-program |
|
|
| Fri, 12 Jun 2026 11:04:39 GMT |
Why Your Subdomain Takeover Reports Keep Getting Closed as N/A (A... |
subdomain-takeover |
|
|
| Sun, 17 May 2026 15:50:44 GMT |
Web Cache Poisoning |
web-cache-poisoning |
|
|
| Tue, 05 Aug 2025 00:19:11 GMT |
Breaking Recon with AMASS |
subdomain-enumeration |
|
|
| Thu, 09 Jul 2026 07:06:01 GMT |
Two nasty surprises in Home Assistant’s config |
bugs |
|
|
| Mon, 06 Jul 2026 23:51:50 GMT |
Ethical Responsibility to Protect the Foolish Youth of the Young |
exploit |
|
|
| Tue, 23 Jun 2026 15:09:51 GMT |
Cuando el atacante encuentra más de lo que deberÃa |
vulnerability-scanning |
|
|
| Sat, 20 Dec 2025 18:21:40 GMT |
N0aziXss SubSpectre: Advanced Subdomain Discovery with Intelligen... |
subdomain-enumeration |
|
|
| Mon, 25 May 2026 14:19:37 GMT |
Look at this, we created this |
bounties |
|
|
| Sun, 12 Jul 2026 19:41:39 GMT |
Account Takeover via Open Redirect XSS |
xss-attack |
|
|
| Sat, 04 Jul 2026 14:50:11 GMT |
Dosya Sistemine Sızış: Directory Traversal ve LFI Zafiyetlerin... |
local-file-inclusion |
|
|
| Sun, 12 Jul 2026 02:55:50 GMT |
DOM XSS in AngularJS expression with angle brackets and double qu... |
xss-vulnerability |
|
|
| Mon, 04 May 2026 14:48:00 GMT |
I Found 150+ Vulnerabilities in DeFi Protocols. Here’s Why I C... |
bounties |
|
|
| Tue, 07 Jul 2026 13:52:01 GMT |
Information Disclosure in Version Control History |
information-disclosure |
|
|
| Tue, 18 Nov 2025 13:26:47 GMT |
GitHub Dorking: The Hunter’s Guide to Finding Secrets in Public... |
github-dorking |
|
|
| Tue, 14 Jul 2026 02:38:44 GMT |
What Is YARA? The Tool Security Researchers Use to Spot Malware P... |
cybersecurity-tools |
|
|
| Tue, 14 Jul 2026 14:29:50 GMT |
Etika Peretasan: Garis Tipis Antara Keamanan Jaringan dan Pelangg... |
information-security, ethical-hacking |
|
|
| Fri, 03 Jul 2026 14:09:25 GMT |
TryHackMe Reconhecimento ativo (versão em português) |
pentest |
|
|
| Sat, 11 Jul 2026 12:55:00 GMT |
How to Replace AWS S3 with MinIO in Development (Without Changing... |
file-upload |
|
|
| Sun, 21 Sep 2025 07:02:30 GMT |
Affordable but Vulnerable? The Dark Side of CMORE HMI |
censys |
|
|
| Sun, 31 May 2026 06:49:51 GMT |
Subdomain Takeover: The Silent Killer of Web Security — Tryhack... |
subdomain-takeover |
|
|
| Tue, 03 Feb 2026 17:12:47 GMT |
My First Week: 3 Business Logic Bugs in Major E-Commerce |
bug-bounty-program |
|
|
| Sat, 04 Jul 2026 12:07:23 GMT |
Sensitive Information Disclosure: What It Is and the Top 10 Tools... |
information-disclosure |
|
|
| Wed, 17 Jun 2026 18:22:29 GMT |
Why 90% of Bug Bounty Hunters Fail in Their First 3 Months (And H... |
recon |
|
|
| Tue, 30 Jun 2026 12:11:15 GMT |
El toro de Wall Street ya está en WhiteBIT |
bounty-program |
|
|
| Tue, 14 Jul 2026 12:49:05 GMT |
The Hidden Cost of Running Ageing Network Infrastructure |
information-technology |
|
|
| Fri, 19 Jun 2026 17:40:08 GMT |
How to Get a Private Bug Bounty Invite on HackerOne — Without S... |
bugcrowd |
|
|
| Sun, 12 Jul 2026 11:54:51 GMT |
Lab: Authentication bypass via information disclosure (Informatio... |
information-disclosure |
|
|
| Mon, 15 Jun 2026 03:18:06 GMT |
How I Escalated Privileges in a File-Sharing Platform by Changing... |
bugcrowd |
|
|
| Sat, 04 Jul 2026 14:22:08 GMT |
XML External Entity (XXE) Injection — Arbitrary Local File Disc... |
security-research |
|
|
| Sat, 11 Jul 2026 12:12:35 GMT |
HACKING JULY DAY 10:JUICE-SHOP XSS |
xss-vulnerability |
|
|
| Tue, 15 Jul 2025 12:15:58 GMT |
“Secure� OPC UA Setups Are Being Hacked — Here’s Why |
censys |
|
|
| Sat, 04 Jul 2026 04:40:06 GMT |
The Festival Phantom: How I Found a Ghost in Germany’s Anubis ... |
vdp |
|
|
| Tue, 14 Jul 2026 12:20:54 GMT |
Network Protocols Explained: TCP, UDP, HTTP, HTTPS and DNS for Be... |
infosec |
|
|
| Fri, 03 Jul 2026 19:09:36 GMT |
CVE_2026_44963 Veeam RCE |
rce |
|
|
| Sat, 11 Jul 2026 07:14:07 GMT |
From Hidden API to Paywall Bypass: Finding an Authorization Vulne... |
idor |
|
|
| Fri, 26 Jun 2026 06:25:44 GMT |
Costa Rica Canopy Tours: Choosing Experiences That Match Your Com... |
directory-listing |
|
|
| Thu, 14 Aug 2025 10:54:38 GMT |
Unlocking the Hidden Power of Search Engines |
censys |
|
|
| Sat, 04 Jul 2026 06:12:12 GMT |
How I Discovered a Critical Data Leak Starting with a Small Clue |
bugbounty-writeup, bug-bounty-hunter |
|
|
| Tue, 14 Jul 2026 15:49:33 GMT |
WhereCTF — Docker Forensics Challenge |
ethical-hacking |
|
|
| Fri, 17 Apr 2026 04:53:23 GMT |
How I Found an Exposed Google Maps API Key on a Global Brand’s ... |
vdp |
|
|
| Sun, 24 May 2026 15:03:53 GMT |
Support | TryHackMe | Walkthrough |
local-file-inclusion |
|
|
| Wed, 03 Jun 2026 17:17:42 GMT |
Nmap Basics: A Beginner’s Guide to Network Scanning in Cybersec... |
vulnerability-scanning |
|
|
| Tue, 14 Jul 2026 06:36:00 GMT |
Why Your AI Coding Agent Keeps Repeating the Same Bug |
bugs |
|
|
| Tue, 14 Jul 2026 12:02:06 GMT |
The Second Lock on Your Online Accounts (That You Don’t Know Ab... |
information-security |
|
|
| Thu, 20 Nov 2025 17:16:47 GMT |
The Health Factor: How DorkFi Keeps Your Position Safe |
dorks |
|
|
| Fri, 27 Mar 2026 03:29:10 GMT |
TryHackMe — File Inclusion (Walkthrough) |
file-inclusion |
|
|
| Tue, 23 Jun 2026 11:42:13 GMT |
Where Are You Storing Your API Keys? (And Why Slack Isn’t It) |
api-key |
|
|
| Tue, 14 Jul 2026 17:31:54 GMT |
13 Web Security Concerns, Solved Twice: Node/Express vs Python/Fa... |
web-security |
|
|
| Tue, 14 Jul 2026 14:22:20 GMT |
Seni Investigasi Digital: Mengungkap Sisi Tersembunyi dari Data P... |
information-security |
|
|
| Mon, 13 Jul 2026 17:58:51 GMT |
Account Takeover via CSRF on the Email-Change Endpoint $1,300 Bou... |
bug-bounty-writeup |
|
|
| Tue, 14 Jul 2026 11:11:49 GMT |
Exposing the Shadowy World of Student Proxy Exploits: 148 npm Pac... |
exploit |
|
|
| Fri, 03 Jul 2026 13:17:38 GMT |
Unauthenticated Stored XSS in NEX-Forms Express WP Form Builder (... |
security-research |
|
|
| Tue, 07 Jul 2026 06:16:01 GMT |
How to Report Bugs & Earn PIF Rewards On TheBenefactor.Net |
bug-bounty-hunter |
|
|
| Tue, 07 Jul 2026 06:11:00 GMT |
Unmasking CVE-2026–26128: The New Windows SMB & NTLM Reflection... |
exploit |
|
|
| Mon, 13 Jul 2026 07:56:49 GMT |
Vulnerability Assessment vs Penetration Testing | SNSKIES |
vapt |
|
|
| Wed, 24 Jun 2026 19:12:15 GMT |
The Invisible Threats: Why Logic Flaws Are Your Biggest Blind Spo... |
vulnerability-scanning |
|
|
| Wed, 10 Jun 2026 08:19:20 GMT |
How I Dealt with an Exposed API Key on GitHub |
api-key |
|
|
| Tue, 14 Jul 2026 16:13:40 GMT |
The Mindset Shift That Changed My Bug Bounty Results |
bug-bounty, web-security |
|
|
| Wed, 01 Jul 2026 05:23:05 GMT |
Broken Authentication Vulnerability That Allowed Unauthorized Use... |
hackerone, bugcrowd |
|
|
| Mon, 08 Jun 2026 10:33:04 GMT |
How a Routine XSS Hunt Led to an Unexpected Database Information ... |
vulnerability-disclosure |
|
|
| Wed, 13 May 2026 16:01:01 GMT |
Mapleton (LFI to RCE) WebVerse |
lfi |
|
|
| Sat, 27 Jun 2026 17:05:53 GMT |
Stored XSS via SVG File Upload in a Project Management Applicatio... |
file-upload |
|
|
| Mon, 13 Apr 2026 22:31:01 GMT |
The Cost of Trusting My Own Fingers |
bounties |
|
|
| Fri, 12 Jun 2026 10:04:19 GMT |
ATDORK |
google-dork |
|
|
| Mon, 29 Jun 2026 10:46:38 GMT |
Costa Rica Canopy Tours: Choosing Experiences That Match Your Com... |
directory-listing |
|
|
| Thu, 18 Jun 2026 11:52:47 GMT |
¿Usas Intercambio? |
bounty-program |
|
|
| Tue, 14 Jul 2026 10:58:28 GMT |
Trying to Bypass Root Detection in Android Applications Using Ker... |
penetration-testing, application-security |
|
|
| Mon, 18 May 2026 07:01:05 GMT |
InterLink Migration Vote Begins | Active Bounty Season 3 |
bounty-program |
|
|
| Tue, 14 Jul 2026 19:23:00 GMT |
TEACCESS.sys + ADV64DRV.sys + PhyMem.sys: KASLR Bypass to SYSTEM ... |
hacking |
|
|
| Thu, 27 Mar 2025 23:46:11 GMT |
Make Break and Betrayal |
web-pentest |
|
|
| Tue, 21 Apr 2026 14:42:50 GMT |
Web Security Series # 16— Exploiting Local File Inclusion (LFI) |
file-inclusion |
|
|
| Sat, 04 Jul 2026 16:38:19 GMT |
Fools Mate — TryHackMe Writeup |
security-research |
|
|
| Mon, 30 Mar 2026 06:03:13 GMT |
Why Business Directory Listings Are the Secret Weapon of Off-Page... |
directory-listing |
|
|
| Sun, 12 Jul 2026 09:08:06 GMT |
Android Pentesting in 2026: The Only Guide You’ll Need to Go Fr... |
bugs |
|
|
| Sat, 20 Jun 2026 00:52:29 GMT |
API Fuzzing for Bug Bounty — Part 2b: Injection, Bypasses & Out... |
bug-bounty-hunter |
|
|
| Sun, 21 Jun 2026 00:45:05 GMT |
Atdork |
google-dorking, google-dork |
|
|
| Tue, 16 Jun 2026 13:11:36 GMT |
Understanding Web Cache Poisoning via Unkeyed Headers: A PortSwig... |
web-cache-poisoning |
|
|
| Fri, 03 Jul 2026 19:50:32 GMT |
: … |
remote-code-execution |
|
|
| Wed, 18 Mar 2026 10:03:26 GMT |
Web Security Series #7 — Exploiting Blind SQL Injection via Ses... |
bug-bounty-hunting |
|
|
| Fri, 17 Apr 2026 15:39:41 GMT |
Bug Bounty 2026: Why the “End of the World� is Actually a $50... |
bounties |
|
|
| Tue, 14 Jul 2026 15:52:36 GMT |
How I Landed My First Job In IT |
information-technology |
|
|
| Thu, 09 Jul 2026 10:54:51 GMT |
Building ThreatMap: Redefining Security Scanning with Local AI Tr... |
vapt |
|
|
| Tue, 14 Jul 2026 23:36:49 GMT |
Your password-reset form is a free email cannon — Authagonal |
security |
|
|
| Tue, 14 Jul 2026 05:17:22 GMT |
AppSec Has a Boundary Problem, and It Is Not the One You Think |
application-security |
|
|
| Thu, 09 Jul 2026 17:27:50 GMT |
When CPUs Betray Us: Understanding Spectre |
exploit |
|
|
| Wed, 22 Oct 2025 14:11:32 GMT |
Mastering Subdomain Enumeration: A Beginner’s Guide to Expandin... |
subdomain-enumeration |
|
|
| Mon, 06 Jul 2026 17:10:06 GMT |
I Built a Great Ctrl + V Screenshot Upload Feature. Why Wasn’t ... |
file-upload |
|
|
| Tue, 14 Apr 2026 17:24:57 GMT |
PAM Cleanup in Practice: Discovery, Risk Triage and Lifecycle Gov... |
cyber-sec |
|
|
| Mon, 06 Jul 2026 09:03:08 GMT |
CVE-2025–43807: Stored Cross-Site Scripting (XSS) Vulnerability... |
cross-site-scripting |
|
|
| Thu, 02 Jul 2026 16:02:56 GMT |
Strengthening Web3 Trust with Blockchain Incident Response & Fore... |
bug-bounty-program |
|
|
| Tue, 16 Jun 2026 04:26:17 GMT |
How to Install Nuclei on Your Machine The Open-Source Vulnerabili... |
vulnerability-scanning |
|
|
| Wed, 13 May 2026 23:11:19 GMT |
The Lethal Trifecta: How AI Agents With Tool Access Turn Prompt I... |
cyber-sec |
|
|
| Sat, 27 Jun 2026 03:05:54 GMT |
PortSwigger : Reflected XSS into a JavaScript String with Angle B... |
cross-site-scripting |
|
|
| Mon, 06 Jul 2026 07:31:35 GMT |
From Testing File Uploads to Discovering Remote Code Execution (R... |
remote-code-execution |
|
|
| Tue, 23 Jun 2026 07:06:16 GMT |
Bug Bounty Recon Mastery →Advanced Reconnaissance and Attack Su... |
subdomain-enumeration |
|
|
| Fri, 10 Jul 2026 19:19:48 GMT |
From a 100 MB Error to Git LFS: What I Learned |
file-upload |
|
|
| Fri, 10 Jul 2026 18:19:50 GMT |
INSTAGRAM Account Takeover 0-click Username and email Collision i... |
bugs |
|
|
| Tue, 14 Jul 2026 22:57:43 GMT |
So your personal data is on the dark web. Now what? |
information-security |
|
|
| Fri, 01 May 2026 09:40:56 GMT |
Excessive Data Exposure Leading to Unauthorized Access to Paid Fe... |
vulnerability-disclosure |
|
|
| Fri, 03 Jul 2026 15:01:17 GMT |
AI Skills Developers Must Learn in 2026: Practical Roadmap, Tools... |
api-key |
|
|
| Tue, 14 Jul 2026 12:56:04 GMT |
How I Demoted a Project Owner to Viewer Using Just Burp Suite —... |
bug-bounty-tips, hackerone, bug-bounty-writeup |
|
|
| Thu, 02 Oct 2025 06:59:46 GMT |
Endless Cashback Glitch:How I Unlocked Unlimited Free Orders with... |
bug-bounty-program |
|
|
| Mon, 29 Jun 2026 03:20:06 GMT |
CVE-2026–50521 | Microsoft Edge (Chromium-based) Remote Code E... |
remote-code-execution |
|
|
| Wed, 24 Jun 2026 16:01:02 GMT |
How a composer install Becomes Remote Code Execution: Inside CVE-... |
remote-code-execution |
|
|
| Mon, 13 Jul 2026 09:28:38 GMT |
Malware Analysis & Reverse Engineering |
vapt |
|
|
| Tue, 14 Jul 2026 09:33:20 GMT |
The Guard Dog That Learned to Lie |
cyber-security-awareness |
|
|
| Sun, 12 Jul 2026 21:01:01 GMT |
Why move_uploaded_file() Doesn't Validate Anything You Think It D... |
file-upload |
|
|
| Wed, 27 May 2026 19:50:08 GMT |
Why Your Directory Listing Service Isn’t Working — And the Fr... |
directory-listing |
|
|
| Tue, 14 Jul 2026 22:11:00 GMT |
BUILDING A BULLETPROOF GRC PROGRAM — Part 4 of 8: Security Base... |
security |
|
|
| Tue, 14 Jul 2026 15:14:24 GMT |
MCP Servers Are the New Open Port 22. Nobody’s Auditing Them. |
web-security, bug-bounty-tips |
|
|
| Sun, 12 Jul 2026 13:23:09 GMT |
Common Authentication Attacks and How I Improved Security in My V... |
xss-attack |
|
|
| Tue, 14 Jul 2026 13:15:30 GMT |
Forward — TryHackMe Room (A.D.) |
pentesting |
|
|
| Fri, 12 Dec 2025 06:49:56 GMT |
How Variable Data Technology is Transforming Postcard & Brochure ... |
vdp |
|
|
| Fri, 17 Apr 2026 16:11:01 GMT |
Mirage (LFI) WebVerse |
lfi |
|
|
| Mon, 08 Jun 2026 09:48:02 GMT |
XSS WAF Bypass: The Ultimate Deep Dive |
xss-bypass |
|
|
| Mon, 22 Jun 2026 04:22:38 GMT |
Subdomain Takeover: A Complete Guide from Beginner to Advanced |
subdomain-takeover |
|
|
| Tue, 14 Jul 2026 10:36:00 GMT |
I Built a Runtime Immune System for Multi-Agent AI — Here’s W... |
infosec |
|
|
| Tue, 14 Jul 2026 08:52:17 GMT |
The Agent Did Exactly What It Was Told To Do. That’s the Proble... |
infosec |
|
|
| Sun, 12 Jul 2026 14:23:31 GMT |
Hacking the Hacker’s Assistant: How I Found a Critical Stored X... |
xss-attack, bugbounty-writeup, xss-vulnerability |
|
|
| Tue, 07 Jul 2026 19:44:00 GMT |
The 403 That Wasn’t: How I Ended Up Accessing 100K Azure AD Use... |
bugbounty-writeup |
|
|
| Mon, 18 May 2026 00:04:46 GMT |
GOOGLE DORK İLE BİLGİYİ HIZLI VE DOĞRU BULMA |
google-dorking, google-dork, github-dorking |
|
|
| Wed, 18 Feb 2026 21:56:48 GMT |
Chapter 14: Subdomain Takeover |
subdomain-takeover |
|
|
| Thu, 28 May 2026 16:33:00 GMT |
CONTENT DISCOVERY-TRYHACKME WALKTHROUGH |
google-dorking |
|
|
| Mon, 18 May 2026 18:07:32 GMT |
SYMFONOS: 1 |
local-file-inclusion |
|
|
| Thu, 11 Jun 2026 05:26:16 GMT |
START HERE, MANIFESTO |
dorks |
|
|
| Thu, 02 Jul 2026 12:21:10 GMT |
OffSec PG: Amaterasu Walkthrough |
pentest |
|
|
| Thu, 11 Jun 2026 17:29:29 GMT |
Free AI API Keys: How to Get Them Without a Credit Card |
api-key |
|
|
| Tue, 14 Jul 2026 22:21:00 GMT |
BUILDING A BULLETPROOF GRC PROGRAM — Part 7 of 8: Centralized R... |
security |
|
|
| Tue, 14 Jul 2026 22:16:00 GMT |
BUILDING A BULLETPROOF GRC PROGRAM — Part 5 of 8: Custom Contro... |
security |
|
|
| Tue, 14 Jul 2026 22:56:00 GMT |
Trust Has to Be Built Before the Dashboard |
information-technology |
|
|
| Tue, 14 Jul 2026 06:20:03 GMT |
SOC Alert Triage and Detection Engineering using MITRE ATT&CK |
cyber-security-awareness |
|
|
| Thu, 30 Apr 2026 15:04:04 GMT |
I Almost Scrolled Past This URL… Then I Got Curious |
lfi |
|
|
| Thu, 25 Jun 2026 22:08:54 GMT |
PortSwigger : DOM XSS in jQuery Selector Sink Using a Hashchange ... |
cross-site-scripting |
|
|
| Fri, 10 Jul 2026 09:19:11 GMT |
How I Bypassed a Mandatory 2FA Enforcement Just by Dropping One R... |
bugbounty-writeup |
|
|
| Sun, 26 Apr 2026 16:31:24 GMT |
��♂� How I Find Critical Data Leaks Using Just Google Sea... |
google-dork |
|
|
| Sun, 05 Apr 2026 20:11:41 GMT |
I Tried Logging In… and Accidentally Did Responsible Disclosure... |
vdp |
|
|
| Wed, 08 Jul 2026 13:01:02 GMT |
CVE-2026–10107: SSRF in MoviePilot v2 Image Proxy Endpoint |
ssrf |
|
|
| Fri, 31 May 2024 13:29:16 GMT |
Map of the worlds best URLs 2025 |
log-poisoning |
|
|
| Sat, 04 Jul 2026 14:47:14 GMT |
AI is built into apps now. What does that mean for data security? |
cyber-sec |
|
|
| Fri, 26 Jun 2026 17:34:18 GMT |
The Ultimate Guide to Embroidery Machine File Formats |
file-upload |
|
|
| Mon, 13 Jul 2026 18:41:33 GMT |
File Path Traversal Vulnerability |
infosec |
|
|
| Wed, 01 Jul 2026 06:25:07 GMT |
One Endpoint. Way Too Many Secrets |
hackerone |
|
|
| Wed, 06 May 2026 11:36:01 GMT |
Google Dorking |
google-dorking, dorking |
|
|
| Sat, 11 Jul 2026 10:55:02 GMT |
Lab: Information disclosure in error messages (Information Disclo... |
information-disclosure |
|
|
| Tue, 07 Jul 2026 05:08:35 GMT |
SSRF |
exploit |
|
|
| Tue, 14 Apr 2026 13:07:05 GMT |
My “Gemini� Is Named Mike |
dorks |
|
|
| Wed, 08 Jul 2026 17:58:32 GMT |
# How I Found CVE-2026–0098: Android App Version Spoofing & Sil... |
cve |
|
|
| Fri, 10 Jul 2026 15:09:02 GMT |
Two AI Concepts That Were Much Simpler Than I Expected |
api-key |
|
|
| Fri, 10 Jul 2026 16:42:00 GMT |
The Billion-Dollar Keystroke: 3 Times a Tiny Code Glitch Blew Up ... |
bugs |
|
|
| Sun, 15 Feb 2026 09:26:13 GMT |
TryHackMe Walkthrough -Subdomain Enumeration |
subdomain-enumeration |
|
|
| Fri, 19 Jun 2026 10:41:20 GMT |
My Cybersecurity Learning Journey at TECHRISE (LEARN FACTORY) |
cybersecurity-tools |
|
|
| Mon, 06 Jul 2026 09:42:54 GMT |
The xss0r Referral Program is now live! |
xss-vulnerability |
|
|
| Tue, 14 Jul 2026 21:49:48 GMT |
Registry Snapshots for Post Exploitation Enumeration |
hacking, pentesting |
|
|
| Tue, 14 Jul 2026 13:55:44 GMT |
The Expert You’d Call in a Ransomware Attack Sees Everything. O... |
infosec |
|
|
| Fri, 08 May 2026 09:52:18 GMT |
When Bug Bounty Hunting Hit Me Back: How Losing $500 Led Me to a ... |
web-cache-poisoning |
|
|
| Mon, 11 Dec 2023 18:17:01 GMT |
Exploiting a Log Poisoning. |
log-poisoning |
|
|
| Mon, 22 Jun 2026 01:55:36 GMT |
PortSwigger : Stored XSS into Anchor href Attribute with Double Q... |
cross-site-scripting |
|
|
| Sun, 12 Jul 2026 04:43:16 GMT |
A Critical Vulnerability in PraisonAI: What You Need to Know |
remote-code-execution |
|
|
| Thu, 09 Jul 2026 19:09:36 GMT |
Engineering a Zero-Trust Document Upload Pipeline: Implementing C... |
file-upload |
|
|
| Mon, 04 May 2026 17:36:51 GMT |
The Complete Guide to Managed Cyber Defense: Protecting Your Busi... |
cyber-sec |
|
|
| Tue, 14 Jul 2026 08:31:20 GMT |
How I Broke a Financial App’s Pricing — By Sending Back What ... |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Tue, 30 Jun 2026 16:51:00 GMT |
How I Discovered a Business Logic Vulnerability That Bypassed a P... |
hackerone |
|
|
| Tue, 14 Jul 2026 10:45:37 GMT |
I Chained Four Privilege Escalation Bugs to Root a Box — He... |
ethical-hacking |
|
|
| Fri, 12 Jun 2026 21:45:49 GMT |
TryHackMe Walkthrough: Support |
local-file-inclusion |
|
|
| Wed, 03 Jun 2026 15:20:33 GMT |
Most Businesses in Costa Rica Are Easier to Find Than You Think, ... |
directory-listing |
|
|
| Tue, 14 Jul 2026 13:29:55 GMT |
The Complete Nmap Guide: From Beginner to Network Scanning Pro |
penetration-testing |
|
|
| Mon, 29 Jun 2026 01:03:39 GMT |
Belajar tentang File Inclusion dalam Penetration Testing |
local-file-inclusion, file-inclusion |
|
|
| Tue, 18 Nov 2025 08:33:41 GMT |
A Chain of Vulnerabilities Leading to Critical Information Disclo... |
bug-bounty-program |
|
|
| Thu, 11 Jun 2026 04:45:57 GMT |
Discover printers during an internal penetration testing engageme... |
recon |
|
|
| Tue, 14 Jul 2026 07:18:23 GMT |
Information Disclosure vulnerabilities: Information Disclosure in... |
vapt |
|
|
| Tue, 21 Apr 2026 15:05:26 GMT |
Web Security Series #17 — Exploiting Local File Inclusion (LFI)... |
file-inclusion |
|
|
| Fri, 28 Jun 2024 14:51:14 GMT |
X-Forwarded HTTP header-ləri : Qısa izah |
log-poisoning |
|
|
| Sat, 20 Jun 2026 07:44:22 GMT |
Ağınız Dışarıdan Nasıl Görünüyor? Shodan İle Kurumsal ... |
shodan |
|
|
| Tue, 14 Jul 2026 08:42:49 GMT |
How I Got €50 for Finding the Same Data Behind a Different Door |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Tue, 14 Jul 2026 21:34:27 GMT |
DCPT em 2026: a minha experiência |
pentesting |
|
|
| Tue, 14 Jul 2026 13:19:45 GMT |
The Internet Was Built for People. We Think It Should Stay That W... |
information-security |
|
|
| Thu, 02 Apr 2026 18:59:50 GMT |
File Inclusion (LFI/RFI) — Extracting Sensitive Data from confi... |
file-inclusion |
|
|
| Tue, 14 Jul 2026 15:41:15 GMT |
NahamStore CTF (XSS) |
pentesting |
|
|
| Tue, 23 Jun 2026 14:32:52 GMT |
Authentication Bypass & Information Disclosure in a Fortune 500 C... |
vdp |
|
|
| Sun, 12 Jul 2026 11:04:39 GMT |
Lab: Source code disclosure via backup files (Information Disclos... |
information-disclosure |
|
|
| Sat, 11 Jul 2026 11:14:08 GMT |
Lab: Information disclosure on debug page (Information Disclosure... |
information-disclosure |
|
|
| Fri, 19 Jun 2026 20:02:36 GMT |
TryHackMe: Support Ops Platform Walkthrough |
lfi |
|
|
| Mon, 08 Jun 2026 08:50:12 GMT |
Huggingface’den Api Key Alma İçeriği (2026) |
api-key |
|
|
| Tue, 14 Jul 2026 09:28:24 GMT |
Tahmine Değil Kanıta Dayanan Çoklu Ajanlı “AI Recon� Arac... |
vulnerability |
|
|
| Mon, 13 Jul 2026 06:46:58 GMT |
How I Discovered a Premium Bypass Vulnerability in Spotify — An... |
hackerone |
|
|
| Tue, 07 Jul 2026 09:20:14 GMT |
The Path of the Serpent: How I Turned a P5 Open Redirect into a ... |
rce |
|
|
| Mon, 18 May 2026 13:05:18 GMT |
Subdomain Takeover |
subdomain-takeover |
|
|
| Tue, 30 Jun 2026 23:25:56 GMT |
Things Nobody Tells You When You Start Bug Bounty (I Learned the ... |
hackerone |
|
|
| Mon, 29 Jun 2026 08:56:42 GMT |
Public PoC Released for Critical libssh2 Flaw That Could Enable R... |
rce |
|
|
| Sat, 11 Jul 2026 08:22:27 GMT |
How I Found an OS Command Injection (RCE) in Coolify |
cve |
|
|
| Wed, 13 May 2026 07:37:16 GMT |
How to Find Subdomains Using Shodan and the Favicon Hash Trick |
subdomain-enumeration, shodan |
|
|
| Tue, 16 Jun 2026 11:22:14 GMT |
Review AtDork: Tool Dorking Python Terbaik 2026? |
dorking |
|
|
| Mon, 22 Jun 2026 06:51:54 GMT |
Find exposed sensitive data in AWS, Google Cloud, and other platf... |
dorks |
|
|
| Mon, 13 Jul 2026 07:02:46 GMT |
Understanding CVE-2026-48939: A Critical File Upload Vulnerabilit... |
cve |
|
|
| Sat, 09 May 2026 10:01:40 GMT |
Shodan.io | TryHackMe |
shodan |
|
|
| Wed, 08 Jul 2026 21:58:01 GMT |
The $0 IDOR That Was Worth More Than a $12,500 P1 |
hackerone, idor |
|
|
| Tue, 10 Feb 2026 23:04:46 GMT |
Effective Dorking Tools |
dorking |
|
|
| Fri, 05 Jun 2026 04:49:28 GMT |
Price Manipulation in Payment Gateway / Shopping Cart |
vdp |
|
|
| Sun, 21 Jun 2026 18:31:00 GMT |
Can You Build a Career on Bugcrowd? I’m Going to Test It. (Day ... |
bugcrowd, bounty-program |
|
|
| Tue, 14 Jul 2026 07:49:57 GMT |
Your Android app probably doesn’t check whether something is dr... |
application-security |
|
|
| Thu, 09 Jul 2026 23:38:38 GMT |
AtDork 1.3.9.6? 180,000 Dorks free open source |
google-dork, dorks |
|
|
| Thu, 02 Jul 2026 12:34:12 GMT |
TryHackMe: NoScope — Finding RCE |
remote-code-execution |
|
|
| Sat, 20 Jun 2026 11:04:15 GMT |
Scanning: The Second Stage of Penetration Testing — Turning Inf... |
vulnerability-scanning |
|
|
| Tue, 28 Apr 2026 07:09:41 GMT |
owockibot: The Bounty Board Powering the Agent Economy |
bounty-program |
|
|
| Tue, 14 Jul 2026 08:38:02 GMT |
Infrastructure Takeover: How Leaked MailWizz API Keys Allowed Byp... |
infosec, web-security, information-disclosure |
|
|
| Tue, 14 Jul 2026 11:13:30 GMT |
Cyber Security Companies: Protecting Businesses Against Modern Cy... |
cyber-security-awareness |
|
|
| Sat, 13 Jun 2026 15:28:09 GMT |
Cómo detectar sitios gubernamentales comprometidos con Spam SEO ... |
google-dork |
|
|
| Thu, 09 Jul 2026 05:17:08 GMT |
Identifying Publicly Leaked OpenAI and Anthropic API Keys |
api-key |
|
|
| Fri, 19 Jun 2026 10:37:59 GMT |
Cybersecurity training in kphb |
cybersecurity-tools |
|
|
| Fri, 10 Jul 2026 18:20:51 GMT |
Hello World! First post, first CVE |
security-research, cve |
|
|
| Wed, 17 Jun 2026 07:53:43 GMT |
Operation Liwanag: The Same Map a Chinese Intelligence Asset Drew... |
shodan, censys |
|
|
| Mon, 06 Jul 2026 14:54:06 GMT |
Learning the postMessage vulnerability (part -1) |
idor |
|
|
| Mon, 29 Jun 2026 06:52:04 GMT |
My First Cross-Site Scripting (XSS) Vulnerability: A Journey of P... |
xss-bypass |
|
|
| Sat, 11 Jul 2026 13:01:01 GMT |
Here’s your Medium article on CVE-2026–10112 |
xss-attack, xss-vulnerability |
|
|
| Sat, 30 May 2026 18:19:20 GMT |
Admin Dashboard Accessible Without Authentication |
vulnerability-disclosure |
|
|
| Mon, 04 May 2026 07:35:39 GMT |
CPDoS via Content Negotiation Mechanism |
web-cache-poisoning |
|
|
| Sun, 14 Jun 2026 13:21:02 GMT |
Subdomain Enumeration: A Core Technique Every Bug Hunter Must Mas... |
subdomain-enumeration, recon |
|
|
| Sat, 20 Apr 2024 17:20:58 GMT |
TryHackMe — Brute Walkthrough | TheHiker |
log-poisoning |
|
|
| Thu, 02 Jul 2026 15:36:00 GMT |
How I Found a Local File Inclusion in DHL |
security-research |
|
|
| Thu, 28 Sep 2023 23:05:39 GMT |
Archangel — TryHackMe |
log-poisoning |
|
|
| Tue, 28 Apr 2026 20:00:52 GMT |
Official Blind XSS Platform Update (2026) |
xss-bypass |
|
|
| Thu, 09 Jul 2026 12:43:47 GMT |
The Easy Bug Series | #01 |
bounty-program |
|
|
| Tue, 14 Jul 2026 13:01:37 GMT |
The Docket: RabbitMQ Shows Message Brokers Are Identity Boundarie... |
application-security |
|
|
| Wed, 06 May 2026 11:30:53 GMT |
How Local Business Directory Listing Helps Attract Local Customer... |
directory-listing |
|
|
| Thu, 02 Apr 2026 17:35:36 GMT |
How I Found a Subdomain Takeover via BetterUptime |
subdomain-takeover |
|
|
| Mon, 29 Jun 2026 04:40:40 GMT |
We Stopped Vulnerable Code from Reaching Production with Snyk. He... |
vulnerability-scanning |
|
|
| Tue, 14 Jul 2026 10:10:25 GMT |
Vulnerability Assessment and Penetration Testing Services in Indi... |
vulnerability, vapt |
|
|
| Tue, 14 Jul 2026 17:07:55 GMT |
Our Household Got Hacked by AI, and Yours Probably Will Too (Part... |
hacking |
|
|
| Tue, 14 Jul 2026 14:26:09 GMT |
Vulnerability: Blind OS Command Injection with Output Redirection |
web-security, pentesting, ethical-hacking |
|
|
| Thu, 25 Jun 2026 22:23:14 GMT |
PortSwigger : Reflected XSS into Attribute with Angle Brackets HT... |
cross-site-scripting |
|
|
| Thu, 18 Jun 2026 11:31:01 GMT |
Broken Access Control — 2026’s #1 Bug |
bugcrowd |
|
|
| Wed, 25 Feb 2026 01:47:45 GMT |
How I Found a Path Traversal in the Rancher Dashboard via HAR Rep... |
web-pentest |
|
|
| Thu, 19 Feb 2026 12:53:45 GMT |
Lab: Web cache poisoning via HTTP/2 request tunnelling | Portswi... |
web-cache-poisoning |
|
|
| Tue, 17 Mar 2026 09:18:53 GMT |
Web Security Series #6 — Exploiting SQL Injection to Extract Se... |
bug-bounty-hunting |
|
|
| Mon, 13 Apr 2026 06:37:51 GMT |
File Inclusion on DVWA |
file-inclusion |
|
|
| Tue, 14 Jul 2026 09:05:36 GMT |
How I built a multi-agent AI recon tool that refuses to guess |
vulnerability |
|
|
| Tue, 14 Jul 2026 04:03:39 GMT |
Three Mental Shifts Every New Cyberecurity Manager Needs to Make |
infosec |
|
|
| Wed, 19 Nov 2025 19:44:02 GMT |
The Pulse of Liquidity: How DorkFi’s Interest Rates Adapt in Re... |
dorks |
|
|
| Thu, 13 Mar 2025 18:09:56 GMT |
How I Found Sensitive Information using Github Dorks in Bug Bount... |
github-dorking |
|
|
| Tue, 09 Jun 2026 06:35:46 GMT |
From LFI to Database Takeover and the RCE That Almost Was |
lfi |
|
|
| Fri, 01 Aug 2025 06:17:06 GMT |
15,000 Critical Systems Are Exposed — Thanks to This Outdat... |
censys |
|
|
| Tue, 07 Jul 2026 12:59:00 GMT |
BUG Bounty — The Upload Was Protected, But the File Was Public. |
bug-bounty-hunter |
|
|
| Wed, 03 Jun 2026 14:55:44 GMT |
Recruit | TryHackMe | Walkthrough |
local-file-inclusion |
|
|
| Sat, 06 Dec 2025 23:06:15 GMT |
Big News from DorkFi — PreFi Rewards Drop + Contest Live! |
dorks |
|
|
| Sun, 15 Mar 2026 16:45:35 GMT |
Web Security Series #4 — Discovering Unauthorized Resources via... |
bug-bounty-hunting |
|
|
| Mon, 29 Jun 2026 14:59:47 GMT |
The Infinite Loop: Deconstructing WSHRAT’s Fileless Injection a... |
security-research |
|
|
| Thu, 11 Jun 2026 05:41:48 GMT |
Shodan: The Search Engine Hackers Don’t Want You to Know About |
shodan |
|
|
| Tue, 07 Jul 2026 04:44:54 GMT |
How to Get USCSI® Certified: A Complete Step-by-Step Guide |
cybersecurity-tools |
|
|
| Mon, 22 Jun 2026 07:48:39 GMT |
Still Confused by Amass or Can’t Understand Its Results, This I... |
recon |
|
|
| Mon, 27 Jan 2025 16:51:28 GMT |
The man who suffered 11 years in hell for freedom has now been fr... |
web-pentest |
|
|
| Thu, 02 Jul 2026 03:47:13 GMT |
Cambodia Cyber Arena 2026: Web — My Assistant — Writeup |
rce |
|
|
| Wed, 08 Jul 2026 10:12:49 GMT |
Deep Dive into Modern Web Vulnerabilities: Advanced API Exploitat... |
ssrf |
|
|
| Wed, 01 Jul 2026 16:21:55 GMT |
When Productivity Becomes a Threat: Malicious Claude Skills |
security-research |
|
|
| Tue, 14 Jul 2026 11:26:12 GMT |
The Supplier Backdoor: Why Modern Supply Chain Attacks Are Bypass... |
cyber-security-awareness |
|
|
| Mon, 13 Jul 2026 15:55:24 GMT |
Lab: Information disclosure in version control history (Informati... |
information-disclosure |
|
|
| Tue, 14 Jul 2026 14:09:22 GMT |
I Don’t Want Another Motivational Speech. I Just Want to Feel A... |
vulnerability |
|
|
| Tue, 14 Jul 2026 09:08:48 GMT |
Hacking Metasploitable 3: A Hands-On Penetration Testing Journey ... |
ethical-hacking |
|
|
| Tue, 14 Jul 2026 15:10:00 GMT |
Stablecoins and the identity problem no one discusses |
cyber-security-awareness |
|
|
| Fri, 03 Jul 2026 21:44:30 GMT |
Unauthenticated RCE in CKFinder via Null Byte Injection Vulnerabi... |
rce |
|
|
| Tue, 14 Jul 2026 19:59:03 GMT |
SOC169 — Possible IDOR Attack Detected (Walkthrough) | LetsDef... |
idor |
|
|
| Tue, 14 Jul 2026 18:45:20 GMT |
Building My First Tool: How Reconductor Came Together |
penetration-testing |
|
|
| Sun, 14 Jun 2026 12:09:22 GMT |
How a Simple Google Dork Earned Me My First Bounty from Bugcrowdâ... |
bugcrowd |
|
|
| Sun, 17 May 2026 02:56:19 GMT |
The 3 Bug Hunting Habits That Made Me Go From $0 to $5k (And None... |
bug-bounty-program |
|
|
| Wed, 08 Jul 2026 22:58:24 GMT |
SAP Penetration Testing Guide |
pentest |
|
|
| Tue, 14 Jul 2026 18:03:23 GMT |
Full Trust |
vulnerability |
|
|
| Tue, 14 Jul 2026 08:24:17 GMT |
HSTS Missing From HTTPS Server:一次æ�žæ‡‚å¼±æŽƒåŽŸå› èˆ‡ IIS ... |
web-security |
|
|
| Mon, 13 Jul 2026 08:03:56 GMT |
I Spent 5 Days Looking for a Bug That Didn’t Exist: NASA |
bugbounty-writeup |
|
|
| Fri, 12 Jun 2026 12:24:10 GMT |
Watcher (THM) Tryhackme Medium Challenge |
local-file-inclusion |
|
|
| Sat, 30 May 2026 11:25:12 GMT |
Cross-Site Scripting (XSS) via Client-Side Filter Bypass |
xss-bypass |
|
|
| Tue, 14 Jul 2026 22:04:49 GMT |
My Terminal Looks Like a Crime Scene and Works Like a Cockpit |
hacking |
|
|
| Sat, 11 Jul 2026 08:08:11 GMT |
I Was Broke, Bored, and Curious About Hacking — Then I Found Ou... |
hackerone |
|
|
| Mon, 13 Jul 2026 19:11:33 GMT |
How I Turned a Magic Link Feature Into Account Takeover |
bug-bounty-writeup |
|
|
| Tue, 23 Jun 2026 15:16:00 GMT |
I Found Google’s Blind Spot. They Called It “Not a Vulnerabil... |
information-disclosure |
|
|
| Sat, 04 Apr 2026 09:10:35 GMT |
We’ve messed up, a lot. Here’s Why Scribble Still Exists to c... |
bounties |
|
|
| Tue, 14 Jul 2026 22:03:10 GMT |
HTB Writeup — DevArea |
penetration-testing, hacking |
|
|
| Tue, 14 Jul 2026 06:58:01 GMT |
Day 9: IOC vs. IOA — Understanding the Difference Between Evide... |
infosec |
|
|
| Wed, 01 Jul 2026 10:16:28 GMT |
Auth Bypass is it? |
bug-bounty-hunter |
|
|
| Thu, 02 Jul 2026 05:01:30 GMT |
The Midnight Exam: How I Secured Russia’s Night Raid Academy |
vdp |
|
|
| Tue, 14 Jul 2026 09:31:20 GMT |
How Convenience Over Security Exposed 160K+ Citizens: An IDOR Bre... |
idor |
|
|
| Tue, 30 Jun 2026 09:45:39 GMT |
Why I Rejected Existing Hacking Tools to Program My Own |
cybersecurity-tools |
|
|
| Sun, 19 Apr 2026 15:57:12 GMT |
XSS Bypass urlparse filter evasion in Python |
xss-bypass |
|
|
| Sat, 11 Jul 2026 19:12:59 GMT |
Breaking CSPs |
xss-attack |
|
|
| Wed, 24 Jun 2026 19:59:01 GMT |
From an Informational Finding to a Valuable Lesson: My IDOR Disco... |
bugcrowd |
|
|
| Thu, 09 Apr 2026 17:39:27 GMT |
From 401 to BAC: How a Refresh Broke Workspace Authorization |
vulnerability-disclosure |
|
|
| Sat, 09 May 2026 01:31:00 GMT |
Your Server Is Showing Everything It Shouldn’t -The Apache Dire... |
directory-listing |
|
|
| Mon, 13 Jul 2026 21:52:49 GMT |
I Found Critical Vulnerabilities in a Shark Tank Brand’s Websit... |
bugs |
|
|
| Sun, 26 Jan 2025 19:08:11 GMT |
Matrix strike’s back against honesty from a power stance |
web-pentest |
|
|
| Fri, 24 Jan 2025 09:34:52 GMT |
A new Holistic temple opening InLeeds |
web-pentest |
|
|
| Wed, 11 Feb 2026 21:37:40 GMT |
From Course Notes to CVE: How a GXPN Study Session Uncovered a 40... |
vulnerability-disclosure |
|
|
| Sat, 04 Jul 2026 15:01:30 GMT |
Sistemin Anahtarını Ele Geçirmek: RCE Injection ve Gelişmiş ... |
rce, remote-code-execution |
|
|
| Mon, 04 May 2026 23:53:49 GMT |
Break The Syntax CTF — Web Challenge 2 Writeup |
lfi |
|
|
| Wed, 23 Jul 2025 15:15:01 GMT |
TryHackMe Include walkthrough: SSRF, log poisoning & LFI2RCE, wit... |
log-poisoning |
|
|
| Wed, 27 May 2026 08:42:26 GMT |
Open Source Transparency Was a Moat — AI Is Turning It Into a L... |
vulnerability-disclosure |
|
|
| Mon, 18 May 2026 14:37:14 GMT |
File Inclusion - Challenge Part | TryHackMe Walkthrough |
file-inclusion |
|
|
| Sun, 07 Jun 2026 18:38:23 GMT |
Visualizing Physical Attack Surface Exposure with Python, WiGLE, ... |
shodan |
|
|
| Wed, 24 Jun 2026 11:31:00 GMT |
CSRF Explained Like You’re Five |
bugcrowd |
|
|
| Mon, 06 Jul 2026 16:35:24 GMT |
How I Learned My Friend’s Favorite Lipstick Shade Without Askin... |
idor |
|
|
| Sun, 05 Jul 2026 18:57:05 GMT |
TryHackMe Protocols and Servers (versão em português) |
pentest |
|
|
| Wed, 20 May 2026 11:18:33 GMT |
Me Before Digiss vs Me Now in Digiss: How My Cybersecurity Learni... |
cyber-sec |
|
|
| Thu, 28 May 2026 07:15:06 GMT |
¡Únete y hazte con uno de los más de 400 premios! |
bounty-program |
|
|
| Sat, 27 Jun 2026 17:01:35 GMT |
When Missing Rate Limiting Leads to a Critical Authentication Fin... |
bug-bounty-hunter |
|
|
| Wed, 12 Feb 2025 22:46:35 GMT |
https://www.express.co.uk/life-style/property/2012927/cleaning-ch... |
web-pentest |
|
|
| Fri, 10 Jul 2026 13:08:56 GMT |
How I Found a Stored XSS Vulnerability While Testing for Self-XSS... |
security-research |
|
|
| Sat, 11 Jul 2026 08:57:08 GMT |
Understanding the Cybersecurity Ecosystem: CVE, CWE, CAPEC, CVSS,... |
cve |
|
|
| Fri, 10 Jul 2026 09:31:00 GMT |
From PortSwigger Labs to my First Real-World Bounty: How a Stored... |
xss-vulnerability |
|
|
| Tue, 16 Jun 2026 02:05:28 GMT |
How to Find More Subdomains Than Everyone Else |
recon |
|
|
| Mon, 04 May 2026 12:56:26 GMT |
Beyond alert(1): Advanced XSS Payload Crafting, Filter Bypasses &... |
xss-bypass |
|
|
| Thu, 20 Nov 2025 09:45:04 GMT |
Timber Doors in Surrey: Style, Durability, and Value Explained |
dorking |
|
|
| Wed, 17 Jun 2026 19:02:16 GMT |
TryHackMe Lo-Fi Writeup |
lfi |
|
|
| Fri, 10 Jul 2026 16:39:15 GMT |
Using Game Cheat PoC Code to Exploit Userland Processes. (Part 1)... |
exploit |
|
|
| Sat, 14 Mar 2026 18:06:12 GMT |
Web Security Series #3 — Discovering Credentials Using Cluster ... |
bug-bounty-hunting |
|
|
| Sun, 15 Mar 2026 17:49:52 GMT |
TryHackMe — Takeover Writeup |
subdomain-takeover |
|
|
| Sat, 04 Jul 2026 14:44:26 GMT |
Behind the Screen Name: Cybersecurity in |
cyber-sec |
|
|
| Mon, 13 Jul 2026 11:04:30 GMT |
Cache Poisoning: From Cache Hits to Bounty |
web-cache-poisoning |
|
|
| Mon, 13 Jul 2026 17:17:30 GMT |
Understanding Server-Side Request Forgery (SSRF): A Complete Guid... |
vapt, ssrf |
|
|
| Mon, 13 Jul 2026 20:58:53 GMT |
IDOR & Bypass Techniques: A Practical Methodology for Security Te... |
idor |
|
|
| Sun, 22 Oct 2023 19:57:30 GMT |
Performing a Log Poisoning Attack |
log-poisoning |
|
|
| Wed, 01 Jul 2026 11:46:00 GMT |
Convierte acciones sencillas en recompensas reales |
bounty-program |
|
|
| Tue, 14 Jul 2026 18:18:22 GMT |
Global CMS Exploitation Campaign and Security Mitigation Guide |
vulnerability |
|
|
| Mon, 06 Jul 2026 20:12:41 GMT |
When Changing an Email Isn’t Enough: Discovering a Persistent A... |
hackerone |
|
|
| Thu, 02 Jul 2026 15:26:09 GMT |
Billing — TryHackMe |
rce |
|
|
| Thu, 09 Jul 2026 15:59:02 GMT |
SNSKIES VAPT Service | Vulnerability Assessment Experts |
vapt |
|
|
| Tue, 07 Jul 2026 05:50:15 GMT |
How to Get USCSI® Certified: A Step-by-Step Guide |
cybersecurity-tools |
|
|
| Tue, 09 Jun 2026 07:00:48 GMT |
Costa Rica Beaches: Which Ones Are Worth the Drive |
directory-listing |
|
|
| Tue, 05 Dec 2023 07:54:40 GMT |
LFI via SMTP log poisoning |
log-poisoning |
|
|
| Tue, 14 Jul 2026 07:22:51 GMT |
Information Disclosure vulnerabilities: Information Disclosure on... |
vapt |
|
|
| Sat, 20 Jun 2026 14:51:32 GMT |
Building DropWire: local file transfer from a browser, no account... |
file-upload |
|
|
| Thu, 28 May 2026 15:59:28 GMT |
File Inclusion Vulnerability Assessment |
file-inclusion |
|
|
| Fri, 10 Jul 2026 15:01:16 GMT |
Signalement des failles d’IA : FLARE-AI propose sa solution |
cve |
|
|
| Mon, 13 Jul 2026 08:48:39 GMT |
Censys 是什麼?和 Shodan 常被拿來比較,兩者實際å·... |
censys |
|
|
| Thu, 04 Jun 2026 06:54:59 GMT |
OpenRouter’dan Api Key Nasıl Alabiliriz (2026) |
api-key |
|
|
| Tue, 14 Jul 2026 16:44:08 GMT |
TuesdayTool 48: OSINTLeak — A Modern OSINT Platform for Digital... |
cybersecurity-tools |
|
|
| Mon, 27 Apr 2026 07:12:30 GMT |
One Weird Query String That Let Anyone Hijack Any Account in Roc... |
bounties |
|
|
| Tue, 14 Jul 2026 13:16:30 GMT |
Web Penetration Testing with Python |
penetration-testing |
|
|
| Sun, 28 Jun 2026 04:33:32 GMT |
Remote Coding Agent Approval Workflow: Keep Agents Moving Without... |
remote-code-execution |
|
|
| Sat, 25 Oct 2025 12:23:25 GMT |
How to find leaks on GitHub as a beginner. Logic is main key |
github-dorking |
|
|
| Wed, 01 Jul 2026 14:16:27 GMT |
Four IDORs, One Target: Broken Access Control in a Gaming Platfor... |
pentest |
|
|
| Tue, 30 Jun 2026 11:31:00 GMT |
Subdomain Takeover — Claiming Forgotten Assets |
subdomain-takeover |
|
|
| Fri, 19 Sep 2025 07:40:16 GMT |
How I Tracked Our Clients’ Device Versions Without Direct Repor... |
zoomeye |
|
|
| Tue, 14 Jul 2026 17:42:39 GMT |
Enterprise Architecture. |
information-technology |
|
|
| Sun, 12 Jul 2026 01:21:50 GMT |
XSS as a Password Stealer : A very overlooked XSS attack vector |
xss-attack, cross-site-scripting |
|
|
| Mon, 13 Jul 2026 16:09:16 GMT |
The OWASP Top 10:2025 — But Make It Salesforce |
application-security |
|
|
| Fri, 06 Jun 2025 15:47:21 GMT |
��♂� GitHub Dorking for Bug Bounty: Hackers' Hidden Playg... |
github-dorking |
|
|
| Tue, 30 Jun 2026 18:34:40 GMT |
TuesdayTool 47: AMASS — Discovering Your Hidden Attack Surface ... |
cybersecurity-tools |
|
|
| Fri, 10 Jul 2026 21:08:54 GMT |
“screenshot� | CyberTalents | Bypass SSRF filters using PHP... |
ssrf |
|
|
| Mon, 06 Jul 2026 20:43:42 GMT |
Active Directory Certificate Services Exploitation 9–16 |
pentest |
|
|
| Tue, 14 Jul 2026 13:36:00 GMT |
510,000 Records Exposed Because One Hard Drive Wasn't Destroyed |
information-security |
|
|
| Mon, 29 Jun 2026 11:44:13 GMT |
Cybersecurity Practice Lab 3 |
cross-site-scripting |
|
|
| Tue, 05 May 2026 09:32:07 GMT |
Google Dorks — Advanced Search |
google-dorking, google-dork |
|
|
| Tue, 07 Jul 2026 16:14:08 GMT |
When a Proxy Becomes a Spy: Hunting an SSRF That Led Straight In... |
ssrf |
|
|
| Thu, 13 Feb 2025 03:29:37 GMT |
ZoomEye Meets DeepSeek: AI-Powered Cyberspace Intelligence |
zoomeye |
|
|
| Sun, 12 Jul 2026 16:33:11 GMT |
Understanding Host Header Injection |
xss-vulnerability |
|
|
| Fri, 17 Apr 2026 15:51:57 GMT |
The 2026 Shodan Dork Bible: Finding Exposed Jenkins, Grafana, and... |
shodan |
|
|
| Fri, 12 Jun 2026 12:04:09 GMT |
The Print Button That Handed Me Your Account: Stored XSS to Full ... |
xss-bypass |
|
|
| Sat, 02 May 2026 14:24:34 GMT |
Analytic Tools |
cyber-sec |
|
|
| Tue, 14 Jul 2026 15:28:01 GMT |
Investigation #001: Unmasking the Infrastructure Behind the 1-Tri... |
infosec |
|
|
| Tue, 14 Jul 2026 17:10:47 GMT |
File Inclusion Challenge (TryHackMe) |
pentesting, file-inclusion |
|
|
| Sat, 11 Jul 2026 15:30:56 GMT |
Your Data Pipeline Succeeded. The Data Was Still Wrong. Here Are ... |
bugs |
|
|
| Mon, 13 Jul 2026 21:52:24 GMT |
How I Exposed a Critical SIEM Vulnerability — And Why Your Infr... |
exploit |
|
|
| Tue, 02 Jun 2026 19:48:50 GMT |
From False Positive to Hall of Fame: Exploiting Web Cache Poisoni... |
web-cache-poisoning |
|
|
| Tue, 07 Jul 2026 08:59:57 GMT |
PortSwigger — Exploiting AI Agents to Trigger Secondary Vulnera... |
ssrf |
|
|
| Thu, 25 Jun 2026 15:42:57 GMT |
Thm Room —Intro to Cross-Site Scripting |
cross-site-scripting |
|
|
| Wed, 08 Jul 2026 19:28:06 GMT |
CRLF Injection — Understanding the Vulnerability ( P 1/3 ) : |
bugbounty-writeup |
|
|
| Thu, 09 Jul 2026 12:57:30 GMT |
Essential Cybersecurity Tools Every Small Business Needs In 2026 |
cybersecurity-tools |
|
|
| Fri, 01 May 2026 20:23:15 GMT |
Shodan Facet Searches That Read Like Threat Intel Poetry |
shodan |
|
|
| Tue, 14 Jul 2026 09:05:47 GMT |
Types of Hackers and Security Audits: A Cyber Guide |
ethical-hacking, cyber-security-awareness |
|
|
| Thu, 21 May 2026 15:16:28 GMT |
How to Bypass LinkedIn Commercial Use Limit in 2026 (Without Payi... |
google-dorking |
|
|
| Fri, 17 Apr 2026 19:01:54 GMT |
The Ultimate Guide to Wayback Machine Dorking for Deleted Leaks |
dorking |
|
|
| Fri, 26 Jun 2026 17:09:50 GMT |
How to Upload Files in Chunks with FilePond and Laravel | Mindwa... |
file-upload |
|
|
| Tue, 14 Jul 2026 12:15:36 GMT |
How I Found a Critical Log Exposure in Workpay’s Infrastructure... |
penetration-testing, information-security, ethical-hacking |
|
|
| Sun, 12 Jul 2026 02:44:51 GMT |
DOM XSS in document.write sink using source location.search insid... |
xss-attack |
|
|
| Mon, 22 Jun 2026 01:16:21 GMT |
PortSwigger : DOM XSS in jQuery Anchor href Attribute Sink Using ... |
cross-site-scripting |
|
|
| Wed, 17 Jun 2026 08:46:50 GMT |
Amazon Prime for Young Adults — Why Every College Soccer Fan Ne... |
bounties |
|
|
| Tue, 14 Jul 2026 06:46:00 GMT |
Critical Security Alert: Understanding the Adobe ColdFusion CVE-... |
application-security |
|
|
| Sun, 13 Jul 2025 16:32:21 GMT |
ProConOS Exposed: What ICS Security Teams Need to Know |
censys |
|
|
| Tue, 14 Jul 2026 06:26:33 GMT |
When Error Messages Become an Attacker’s Roadmap: Finding Hidde... |
web-security |
|
|
| Tue, 14 Jul 2026 05:28:55 GMT |
I Scanned The Entire Internet Port Range In Under 6 Minutes. Here... |
bug-bounty-tips |
|
|
| Tue, 14 Jul 2026 15:31:09 GMT |
How Leaked Service Account Credentials Bypass MFA |
pentesting |
|
|
| Tue, 23 Jun 2026 17:44:04 GMT |
Still Doing Recon Manually? You’re Wasting Time — Recon Smart... |
bug-bounty-hunter |
|
|
| Mon, 29 Jun 2026 23:19:13 GMT |
From Deep Link to Shell: Easy $3000 Android Crits. |
rce |
|
|
| Mon, 13 Jul 2026 19:01:01 GMT |
Bypassing Next.js Auth with CVE-2025–29927 |
cve |
|
|
| Mon, 13 Jul 2026 12:51:11 GMT |
Web Application Penetration Testing UAE: Why Every Business Needs... |
application-security |
|
|
| Thu, 04 Dec 2025 04:45:36 GMT |
What is Google Dorking? |
dorking |
|
|
| Mon, 17 Nov 2025 09:27:29 GMT |
200 reports, 11 valid bugs, 0 critical issues. Here’s everythin... |
vdp |
|
|
| Tue, 21 Apr 2026 13:33:52 GMT |
Kioptrix: 2014 — VulnHub Walkthrough pChart LFI + PhpTax RCE to... |
lfi |
|
|
| Mon, 06 Jul 2026 14:14:46 GMT |
Writing Effective Bug Bounty Reports: A Practical Guide for Bug B... |
bugbounty-writeup |
|
|
| Sun, 05 Jul 2026 12:32:24 GMT |
How to Pick a Directory Listing Service That Actually Works |
directory-listing |
|
|
| Fri, 03 Jul 2026 07:26:00 GMT |
The June 2026 Vulnerability Surge: Why Your Perimeter Defenses Ar... |
remote-code-execution |
|
|
| Mon, 22 Jun 2026 14:38:16 GMT |
Remote Code Execution via Custom JS Function in Flowise |
remote-code-execution |
|
|
| Wed, 10 Jun 2026 19:48:50 GMT |
Visita inesperada. |
recon |
|
|
| Tue, 14 Jul 2026 22:57:43 GMT |
HTB Writeup — Logging |
penetration-testing, hacking |
|
|
| Tue, 14 Jul 2026 12:52:34 GMT |
MCRTA Exam Walkthrough — Breaking Into AWS, Azure & GCP |
penetration-testing |
|
|
| Sun, 12 Jul 2026 13:01:37 GMT |
The Docket: Gitea Docker Turned Proxy Trust Into Identity Bypass |
application-security |
|
|
| Fri, 24 Jan 2025 00:08:47 GMT |
A majestic temple opportunity of wellbeing and wellness |
web-pentest |
|
|
| Fri, 13 Mar 2026 14:55:26 GMT |
Web Security Series #2 — Bypassing Authentication via MFA Tampe... |
bug-bounty-hunting |
|
|
| Wed, 10 Jun 2026 11:31:00 GMT |
Recon Is Everything — Where Real Bugs Actually Hide |
recon |
|
|
| Wed, 01 Jul 2026 11:02:50 GMT |
Bounty Hacker |
bounties |
|
|
| Tue, 14 Jul 2026 12:47:07 GMT |
The Great Offshore Shell Game: Why Enterprise Strategy is Funding... |
information-technology |
|
|
| Sat, 11 Jul 2026 08:53:55 GMT |
Bug Bukan Hanya Dari Code |
bugs |
|
|
| Tue, 14 Jul 2026 11:10:01 GMT |
Building an Enterprise AI Governance Program: A Practical Guide f... |
cyber-security-awareness |
|
|
| Tue, 13 Jan 2026 13:27:13 GMT |
Hacking “Time�: When Critical Infrastructure Forgets to Set a... |
vulnerability-disclosure |
|
|
| Tue, 14 Jul 2026 11:34:21 GMT |
Exposing Administrative Secrets: How an Exposed Nylas Client Secr... |
bug-bounty-tips, bug-bounty-writeup |
|
|
| Tue, 14 Jul 2026 15:59:07 GMT |
Hack Smarter Labs — Dark: From Unauthenticated WordPress Bug to... |
ethical-hacking |
|
|
| Wed, 06 May 2026 23:46:09 GMT |
HTB File Inclusion Skills Assessment — From LFI to RCE (Full Wa... |
local-file-inclusion |
|
|
| Mon, 06 Jul 2026 00:22:55 GMT |
The Methodology Behind CVE-2026-11395: An Unauthenticated SSRF Hi... |
ssrf |
|
|
| Sun, 21 Jun 2026 18:54:02 GMT |
From Hydra to RCE: Breaking Down TryHackMe’s Support Machine |
web-pentest |
|
|
| Sun, 14 Jun 2026 22:00:33 GMT |
La sémantique de l’esquive : Analyse lexicologique du discours... |
lfi |
|
|
| Tue, 14 Jul 2026 15:57:16 GMT |
My Legs Refused to Float and It Taught Me Something Embarrassing ... |
vulnerability |
|
|
| Mon, 06 Jul 2026 13:01:03 GMT |
CVE-2026–10100: Stored XSS in Simple Custom Login Page WordPres... |
xss-attack, xss-vulnerability |
|
|
| Tue, 07 Jul 2026 21:06:39 GMT |
Session Fixation |
bugbounty-writeup |
|
|
| Fri, 12 Jun 2026 12:39:46 GMT |
[Nvidia AI API] Nvidia �費AI API 申請 |
api-key |
|
|
| Tue, 14 Jul 2026 12:35:59 GMT |
Bonnes pratiques d’intégration en baie pour les tiroirs optiqu... |
information-technology |
|
|
| Fri, 06 Feb 2026 06:33:08 GMT |
5 Ways to Bypass Email Verification Without Using Any Tool |
bug-bounty-program |
|
|
| Tue, 19 May 2026 17:44:55 GMT |
Day 5: Footprinting & Reconnaissance -How Attackers Know Everythi... |
google-dorking |
|
|
| Wed, 17 Dec 2025 09:57:30 GMT |
The Mother Lode: Hacking with GitHub Dorking |
github-dorking |
|
|
| Thu, 04 Jun 2026 11:54:28 GMT |
Vulnerability Management: Identifying and Fixing Security Weaknes... |
vulnerability-scanning |
|
|
| Fri, 10 Jul 2026 00:24:26 GMT |
Stored DOM XSS — PortSwingger |
xss-vulnerability |
|
|
| Wed, 16 Jul 2025 12:07:42 GMT |
Hackers Love This 1979 Protocol (Because It Can’t Defend Itself... |
censys |
|
|
| Sat, 06 Jun 2026 07:18:44 GMT |
Update: The Ending of My $500 Loss and Web Cache Poisoning Story. |
web-cache-poisoning |
|
|
| Wed, 01 Jul 2026 15:52:58 GMT |
Critical File Upload Vulnerability: Web Shell Upload via Content-... |
rce |
|
|
| Thu, 09 Jul 2026 21:27:37 GMT |
TryHackMe Protocols and Servers 2 (versão em português) |
pentest |
|
|
| Fri, 03 Jul 2026 21:44:21 GMT |
CVE-2026–48493: Privilege Escalation via Permission Bypass in S... |
security-research |
|
|
| Sat, 11 Jul 2026 03:37:30 GMT |
Memburu Celah Keamanan di Situs Besar: Eksplorasi CVE-2021–4118... |
xss-vulnerability |
|
|
| Sun, 05 Jul 2026 05:37:58 GMT |
The Recon Habit Most Hunters Skip (And Pay For Later) |
bug-bounty-hunter |
|
|
| Thu, 07 May 2026 06:41:01 GMT |
Github Dorking |
dorking, github-dorking |
|
|
| Thu, 09 Jul 2026 11:31:00 GMT |
How I Found My First Critical Bug (An IDOR Story) |
idor |
|
|
| Sat, 04 Jul 2026 10:36:33 GMT |
Basic Pentesting: 2 |
pentest |
|
|
| Mon, 06 Jul 2026 11:47:49 GMT |
UK Business Directory: Strategic Visibility for Local Market Succ... |
directory-listing |
|
|
| Thu, 09 Jul 2026 02:11:01 GMT |
When a Prefix Looks Like a Boundary: A Public-Share Path Traversa... |
cve |
|
|
| Tue, 19 May 2026 14:13:53 GMT |
Guildford to Box Hill |
dorking |
|
|
| Wed, 24 Jun 2026 13:40:07 GMT |
SOC Tools Explained for Beginners: SIEM, EDR, NDR & SOAR — A Si... |
cybersecurity-tools |
|
|
| Tue, 11 Nov 2025 16:43:14 GMT |
Beyond Google: Navigating the Hidden Internet with Shodan and Cen... |
censys |
|
|
| Tue, 12 May 2026 17:55:36 GMT |
Wild Bounty Showdown PG Soft: Rahsia Maxwin Cowboy & Pola Gacor T... |
bounties |
|
|
| Fri, 10 Jul 2026 03:06:06 GMT |
I Attacked a Vulnerable Web App and Then Fixed It — A Security ... |
cross-site-scripting |
|
|
| Tue, 07 Jul 2026 21:04:57 GMT |
Captcha Bypass |
bugbounty-writeup |
|
|
| Wed, 20 May 2026 20:47:25 GMT |
FINDING INFORMATION QUICKLY AND ACCURATELY WITH GOOGLE DORK |
google-dorking, google-dork, github-dorking |
|
|
| Tue, 14 Jul 2026 12:52:51 GMT |
Best Cyber Security institute in Hyderabad |
cyber-security-awareness |
|
|
| Tue, 24 Mar 2026 17:48:00 GMT |
The Ultimate Bug Bounty Course: From Zero to Advanced Hacker 1 |
bug-bounty-hunting |
|
|
| Thu, 12 Mar 2026 18:11:47 GMT |
A Simple P4 Bug That Ended as Duplicate |
bug-bounty-hunting |
|
|
| Thu, 18 Jun 2026 15:00:04 GMT |
Bore-dom, IP Pools, and a Nation’s Water Control: How I Breache... |
cyber-sec |
|
|
| Wed, 17 Jun 2026 16:57:29 GMT |
Unauthenticated IDOR on NASA’s GitLab Instance — From Recon t... |
bugcrowd |
|
|
| Wed, 01 Jul 2026 11:07:22 GMT |
Archangel TryHackMe Walkthrough | LFI, Log Poisoning & Linux Pri... |
local-file-inclusion |
|
|
| Mon, 25 May 2026 22:43:37 GMT |
Support Writeup for Jr.Pentester Path — TryHackMe/THM |
local-file-inclusion |
|
|
| Thu, 09 Jul 2026 13:01:02 GMT |
Here’s your Medium article on CVE-2026–10109. |
cve |
|
|
| Tue, 07 Jul 2026 02:35:59 GMT |
Search Skills: Mastering Cyber Security Research & OSINT |
shodan |
|
|
| Tue, 14 Jul 2026 22:01:00 GMT |
BUILDING A BULLETPROOF GRC PROGRAM — Part 2 of 8: Applying GRC ... |
security |
|
|
| Tue, 14 Jul 2026 17:00:34 GMT |
Ace of All Trades, Master of Confusion |
information-technology |
|
|
| Fri, 08 May 2026 22:01:34 GMT |
AI Is Breaking the Two Rules That Kept the Internet Safe — And ... |
vulnerability-disclosure |
|
|
| Tue, 14 Jul 2026 21:31:00 GMT |
OWASP Top 10 Labs Series #10 - SSRF: Two Labs, Two Ways a Server ... |
ssrf |
|
|
| Tue, 26 May 2026 23:44:37 GMT |
Intigriti May 2026 Challenge: XSS via Stored Payload & SCA Shield... |
xss-bypass |
|
|
| Sat, 13 Jun 2026 11:31:00 GMT |
Reflected XSS Made Stupidly Simple |
bugcrowd |
|
|
| Mon, 06 Jul 2026 09:00:46 GMT |
THE EXPLOITS |
exploit |
|
|
| Thu, 09 Jul 2026 08:16:01 GMT |
Bug Bounty — Bypassing Access Controls: How a Single Boolean Fl... |
bug-bounty-hunter |
|
|
| Sun, 05 Jul 2026 11:31:00 GMT |
Google Dorking for Bug Hunters |
google-dork |
|
|