Omar Elhadidi10 ways to get RCE From LFIthis illustrates multiple ways to upgrade your LFI to RCEFeb 25, 2022A response icon1Feb 25, 2022A response icon1
Kaan AtmacaAccount Takeover via Business LogicHi! In a recent web pentest project by using business logic, I was able to bypass the one-time password, leading to an account takeover.Oct 20, 2023A response icon3Oct 20, 2023A response icon3
kerstanHow I Discovered SSRF on Hackerone ProgramHi guys, I am Kerstan. Today, I will share you how I discoverd SSRF on hackerone Program.Dec 7, 2023A response icon2Dec 7, 2023A response icon2
M Maulana AbdullahHow a single quote (‘) may potentially destruct one of a biggest public transportation businessOne day I planned to travel to my hometown in East Java, Indonesia, by looking for any possible options of public transportation to reach…Jul 22, 2023Jul 22, 2023
InInfoSec Write-upsbyXcheaterBreaking Down SSRF on PDF Generation: A Pentesting GuideHello Hackers, I Hope you guys are doing well and hunting lots of bugs and dollars !Jul 21, 2023Jul 21, 2023
