LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

Credential stuffing in Bug bounty hunting

2 years ago 151
BOOK THIS SPACE FOR AD
ARTICLE AD

Bug hunting is not always about looking for classic vulnerabilities (XSS, SQLi, SSRF, RCE, etc). Sometimes it is a search for a new problem domain. In this article, I will tell you how this not-so-standard approach to vulnerability searching helped me to find many critical problems.

One evening I came up with the idea of crossing Credential Stuffing and Bug bounty hunting. Credential stuffing is the search for leaked usernames and passwords for their use in popular online services, as most of the users love to use the same password everywhere. More often than…

Read Entire Article
  3. Credential stuffing in Bug bounty hunting

Related

Bug Zero at a Glance [01–15 April]

Bug Zero at a Glance [01–15 April]

Exploring the Filliquid Testnet Launch Bug Bounty Program!

Exploring the Filliquid Testnet Launch Bug Bounty Program!

privilege escalation allow the app admin to add the user as organization admin (on Microsoft own…

privilege escalation allow the app admin to add the user as organization admin (on Microsoft own…

Spotting Sensitive Data in iOS Applications A Penetration Tester’s Guide

Spotting Sensitive Data in iOS Applications A Penetration Tester’s Guide

24.1 Lab: HTTP request smuggling, confirming a CL.TE

24.1 Lab: HTTP request smuggling, confirming a CL.TE

How A Blackbox Target Turned To Whitebox With Recon

How A Blackbox Target Turned To Whitebox With Recon

Trending

1. Nadal
2. Aamir Khan
3. Hardik Pandya
4. Championship
5. Liverpool
6. LSG बनाम RR
7. Pakistan vs New Zealand
8. Ishan Kishan
9. Ujjwal Nikam
10. DC MI

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved