PinnedPublished inInfoSec Write-upsFrom Newbie to Pro: My Journey to a $3,000 Bug BountyTwo or Three years ago, I had no idea what bug bounty hunting was. I wasn’t a hacker, nor did I have a formal computer science degree. I…Dec 6, 20244Dec 6, 20244
Mastering Burp Suite: The Ultimate Cyber Swiss Army Knife for Bug BountiesImagine you’re a bug bounty hunter sitting at your desk, sipping coffee ☕, and staring at a login page. You think, “What if I could change…2d ago12d ago1
Published inInfoSec Write-upsHow I Earned $200 Using GitHub Dorking P=2:Advanced GitHub Dorking: More Secrets, More Automation…Jan 301Jan 301
Published inInfoSec Write-upsHow I Earned $200 Using GitHub Dorking: A Manual and Automated Guide to Finding Sensitive…GitHub is a goldmine for bug bounty hunters and security researchers, with countless repositories containing sensitive information — API…Jan 282Jan 282
Published inOSINT TeamPolluting My Way to Victory: How I Found HTTP Parameter Pollution (HPP) and Exploited It Like a ProHave you ever stared at a web application and thought, What happens if I send two of the same parameters? Most hunters don’t give this a…Jan 22Jan 22
Published inInfoSec Write-upsBuilding Your Own Bug Bounty Lab: A Hands-On Guide with Metasploit and MoreFrom Zero to Hero — Your Journey Begins HereJan 13Jan 13
Published inInfoSec Write-upsThe Subdomain They Forgot — How I Chained Bugs for a $1,000 BountyThe internet never forgets, and neither should bug bounty hunters. As hackers, we live for those quiet moments when something seemingly…Jan 113Jan 113
Published inOSINT TeamWhen APIs Can’t Keep Up: How I Exploited Misconfigured Rate Limits to Crash the PartyDec 30, 2024Dec 30, 2024
Published inInfoSec Write-upsHow I Broke the Speed Limit: A Bug Bounty Tale of Bypassing Rate LimitingYou know that feeling when you’re staring at a secure application, a masterpiece of security controls? Every endpoint you poke at seems…Dec 17, 2024Dec 17, 2024
Published inOSINT TeamFrom Minor Glitches to Major Wins: How I Chained CSRF and IDOR for a Critical ExploitEver had that moment as a bug bounty hunter where you feel like you’re grasping at straws? You dig through a target, hoping for something…Dec 16, 2024Dec 16, 2024
