PikaChu

#Windows Red Team Cheat Sheethttps://morph3sec.com/2019/07/16/Windows-Red-Team-Cheat-Sheet/ …

CVE-2019-18426  
From Persistent-XSS in Whatsapp to Reading from the File System on Mac/Windows with a potential for RCE

Bounty: $12,500
#bugbounty

https://www.perimeterx.com/tech-blog/2020/whatsapp-fs-read-vuln-disclosure/ …

Airbnb #bugbounty https://link.medium.com/eC4n4GTUN3  https://xpoc.pro/oauth-authentication-bypass-on-airbnb-acquisition-using-weird-1-char-open-redirect … https://www.arneswinnen.net/2017/06/authentication-bypass-on-airbnb-via-oauth-tokens-theft … https://buer.haus/2017/03/31/airbnb-web-to-app-phone-notification-idor-to-view-everyones-airbnb-messages/ … https://buer.haus/2017/03/13/airbnb-ruby-on-rails-string-interpolation-led-to-remote-code-execution/ … https://buer.haus/2017/03/09/airbnb-chaining-third-party-open-redirect-into-server-side-request-forgery-ssrf-via-liveperson-chat … https://buer.haus/2017/03/08/airbnb-when-bypassing-json-encoding-xss-filter-waf-csp-and-auditor-turns-into-eight-vulnerabilities … #bugbountytips

CVE-2019-18426 #WhatsApp for Web and Desktop contained multiple vulnerabilities, which, when combined together, could have even allowed remote attackers to read files from a victim's local file-system just by sending messages. Read details: https://thehackernews.com/2020/02/hack-whatsapp-web.html?utm_source=social_share … #infosec

"Dropbox often uses libcurl to make network requests which supports dozens of different protocols, not just HTTP and HTTPS" - [Dropbox didn't read our libcurl security man page]https://blogs.dropbox.com/tech/2020/02/dropbox-bug-bounty-program-has-paid-out-over-1000000/ …

Yet Another Sudo #Vulnerability! When 'pwfeedback' is enabled, a new Sudo bug could let low privileged #Linux & #macOS users (or malicious programs) execute arbitrary commands with 'root' privileges. Details for CVE-2019-18634 ➤ https://thehackernews.com/2020/02/sudo-linux-vulnerability.html?utm_source=social_share … #infosec #cybersecurity

A source code analyzer built for surfacing features https://github.com/microsoft/ApplicationInspector … Burp Bounty(a quick and simple way, to improve the active and passive scanner) https://github.com/wagiro/BurpBounty … Sublert is a security and reconnaissance tool https://github.com/yassineaboukir/sublert … #bugbounty,#bugbountytips

This month I learnt how to analyse the JavaScript of a React Native application while bounty hunting. I wanted to share what I found out with everyone else.https://blog.assetnote.io/bug-bounty/2020/02/01/expanding-attack-surface-react-native/ …

Exploiting Format Strings in Windowshttps://medium.com/bugbountywriteup/exploiting-format-strings-in-windows-5f96c9b29dea?source=rss----7b722bfd1b8d---4 …

Windows 10 UAC bypass for all executable files which are autoelevate true.https://github.com/sailay1996/UAC_Bypass_In_The_Wild …