It’s important to read and keep in mind for those times when our bodies are telling us to stop working/hacking and we want to keep pushing.Īnother very interesting read is an interview with He is a successful full-time bug hunter who is known for his kindness, for automating everything and advocating for empathy and mindfulness. Redefining What it Means to be a Hacker with Eric Head aka burnout story is a cautionary tale for all of us hackers. Non technical items of the alarming burnout story
Topics taught include how to debug extensions, reverse engineer obfuscated JavaScript, perform JavaScript dynamic analysis with Browser DevTools, decrypt AES-GCM encypted messages, and log/instrument extensions. shares an incredibly detailed tutorial with the Nordpass Chrome extension as an example. This is the ultimate guide to get into testing Chromium browser extensions. Testing Extensions in Chromium Browsers – Nordpass In this unique type of hacker interviews by show how he performs distributed recon with Axiom and tools like meg, nmap, httpx, ffuf, etc. Live Recon and Distributed Recon Automation Using Axiom with to know how Axiom’s author uses it to hunt for bugs on real targets? This is the video to watch! A pretty impressive finding and informative writeup by 3. The second writeup is about open redirect in a Facebook app’s OAuth flow that lead to account takeover. If you’re learning about this topic, this is a helpful resource especially if combined with the “Tutorial of the week” below. It involves analyzing a Chrome browser extension and navigating through obfuscated JavaScript with Chrome Dev Tools. The first writeup is walthrough of the DEFCON 29 CTF Qualifier 3factooorx challenge. Writeups of the weekĭEFCON 29 CTF Qualifier: 3FACTOOORX Write-upįacebook account takeover due to unsafe redirects after the OAuth flow (Facebook, $28,800) Such amazing work by the Project Discovery team! 2. It has a beautiful Web interface and can be integrated with Nuclei. If you can’t or don’t want to pay for it, there is now a free open source alternative thanks to provides a client/server infrastructure, with the possiblity to use a self-hosted server for privacy. It can be a pain to perform Out-of-Band testing without Burp Collaborator.
Interactsh, Intro & Nuclei + Interactsh Integration for Automating OOB Testing Intigriti News Congratulations to and for joining Intigriti’s 1337 gang! Hacksplained joins Intigriti to further enable community of 35.000 ethical hackers Our favorite 5 hacking items 1. This issue covers the week from April 26 to May 3.
0 kommentar(er)
