— Posts 21 / 21
  1. 2026 · 03 · 21

    Story of Abusing a Fully Secured redirect_uri in an OAuth Flow
  2. 2026 · 02 · 23

    uXSS on Samsung Browser [CVE-2025-58485 · SVE-2025-1879]
  3. 2026 · 02 · 10

    When Two Parsers Disagree: Exploiting Query String Differentials for XSS
  4. 2026 · 02 · 03

    Shaking the MCP Tree: a security deep dive
  5. 2025 · 12 · 07

    DOM XSS to Account Takeover: not-so-dirty dancing in a GIS SDK
  6. 2025 · 10 · 19

    Cloudflare Image Proxy as a CSPT Gadget: A Cross-Origin CSPT Exploit
  7. 2025 · 08 · 09

    Hacking Veeam: Several CVEs and $30k Bounties
  8. 2025 · 06 · 01

    Puny-Code, 0-Click Account Takeover
  9. 2025 · 05 · 06

    Stealing oAuth Token via Referrer Policy Override
  10. 2025 · 02 · 15

    CSS Data Exfiltration to Steal OAuth Token
  11. 2024 · 11 · 22

    OAuth Non-Happy Path to ATO
  12. 2024 · 11 · 19

    From an Android Hook to RCE: $5000 Bounty
  13. 2024 · 10 · 23

    A Weird CSP Bypass led to $3.5k Bounty
  14. 2024 · 10 · 11

    Drilling the redirect_uri in OAuth
  15. 2024 · 09 · 17

    Account Takeover due to DNS Rebinding
  16. 2024 · 03 · 05

    $20,300 Bounties from a 200 Hour Hacking Challenge
  17. 2023 · 11 · 17

    Hijacking OAuth Code via Reverse Proxy for Account Takeover
  18. 2023 · 11 · 01

    $7000 Bounty on a Single Web Application
  19. 2023 · 10 · 21

    $9240 Bounty in 30 days Hunt Challenge
  20. 2023 · 10 · 20

    Bug Bounty Roadmap from Scratch
  21. 2023 · 10 · 14

    Uncovering a Command Injection, $2400 Bounty