-
I always had a hard time finding
@GoogleVRP writeups beacuse they were all over the place in different blog posts, so I made this. If you know of something that is not in there, you are more than welcome to contribute!
#BugBonty#infosec#GoogleVRP https://github.com/xdavidhu/awesome-google-vrp-writeups … -
Just published a fun logic flaw that's been in the works for the past couple of weeks.
#bugbounty#googlevrp@GoogleVRPhttps://medium.com/@milanmagyar/ggvulnz-how-i-hacked-hundreds-of-companies-through-google-groups-b69c658c8924 … -
-
I planned to disclose my
#GoogleVRP bugs first in talks (only ~october) and after that in blog posts. This would delay the blog posts. I'd like to share the bugs as soon as I can but I also feel like talks should be first since they deserve some "exclusivity". What do you think? -
hunting on Google Oct-Dec 2019
#bugbounty#bugbountytips#googlevrp pic.twitter.com/OPODM1Go0U
-
hunting on Google Oct-Dec 2019
#bugbounty#bugbountytips#googlevrp pic.twitter.com/JCgzdJzK7t
-
Third P1 on
#GoogleVRP. Finding and reporting these bugs is really amazing. The fact that you can get paid for them is also nice. pic.twitter.com/he9MWbnm34
-
hunting on Google Oct-Dec 2019
#bugbounty#bugbountytips#googlevrp pic.twitter.com/lPx3oR3iwR
-
This was super exciting. Lesson I learned from this bug is that it's *worth* going really deep, understanding everything, and trying again, even after you failed at the first time.
#GoogleVRP#bugbountypic.twitter.com/Szi9Sbq1UY
-
This was super exciting. Lesson I learned from this bug is that it's *worth* going really deep, understanding everything, and trying again, even after you failed at the first time.
#GoogleVRP#bugbountypic.twitter.com/TcrDzEwQZm
Prikaži ovu nit -
Yeeeyy, new achivement: Triaged with "Nice catch!"

#GoogleVRP pic.twitter.com/zYoa9VaY1z
Prikaži ovu nit -
ah, i think i'm wrong, hopefully this is be inspiration to you. for double check, maybe to triple check before send bugs :) https://sultanbalkiyeah.github.io/google-bugs-disclosure.html … sorry
#googlevrp this vuln, for make POST on Gmail. because when i paste, code csrf not worked. but in another csrf, is worked. -
An XSS via Dom Clobbering in AMP4Email, A bug found by
@SecurityMB in Google VRP https://research.securitum.com/xss-in-amp4email-dom-clobbering/ …#google#googlevrp#xss#amp4email -
First l33t reward!! Want to do a writeup about this if everything is fixed.
#GoogleVRP pic.twitter.com/oAkBplsasX
Prikaži ovu nit -
oh SHIT! This was a low severity bug I reported like a month ago, and not really expecting anything. But looks like finally achieved this goal! Fist bounty from Google!!
#GoogleVRP pic.twitter.com/a74w0X2Tbq
-
This was sick..........ey u suckers.. I got an really weird idor ........in googles product writeup coming soon .............................!
#bugbounty#bugbountytip#googlevrp#vrp -
After 1 month again visited it--> Now the admin password was reseted to default credentials admin:password --> Got logged in!
#GoogleVRPPrikaži ovu nit
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

