.png)
6 months ago
29 BOOK THIS SPACE FOR AD
ARTICLE AD
Intro : Hello Hackers! This is my new Blog On Bug Hunting. So a month ago I was hunting in HackerRank Bug Hunting Program. So I got some Bugs and from then I want to share 1 of the Bug and how did I found that which is Accepted. So lets’s Jump into the Hack.
I started with a Basic Subdomain Enumeration. I used the tools below.
subfinderassetfinder
crt.sh
Then I filter all the Live Subdomains.
cat subs.txt | httprobe > live.txtAfter that I try to crawl the all Urls to find something Interesting.
cat live.txt | gau > URL.txtcat live.txt | wayback >> URL.txt
After getting all the URL I try to search some specific Parameter from the URL like : token, id, email,b etc…
And I got some of the URL’s leaked Tokens. So with out Token I only able to see the Login Page.
https://something.hackerrank.com/path/?b=TOKENBut with the Token I can directly access the Profile Page with some Code.
So I report this Bug as an Improper Access Control and HackerRank Security Team accepted that quickly.
And after someday I received the Swag.
So that’s all for today. See you in next Hunting.
THANKS FOR READING!
If you like it don’t forget to Like it and Follow me for more Articles.
Happy Hacking
Bengali (Bangladesh) · 
English (United States) ·