All Articles

2020 (2)

16.09. Patrik’s Bug Bounty 🛠️Tools🛠️ (2)
16.06. How I made more than $30K with Jolokia CVEs (8)

2018 (1)

05.05. [Tools] Visual Recon – A beginners guide (1)

2017 (3)

21.10. The Stony Path of Android 🤖 Bug Bounty – Bypassing Certificate Pinning (20)
05.10. [Paper] Messaging Queues in the IoT under pressure – Stress Testing the Mosquitto MQTT Broker (1)
29.04. [Paper] Analysis of security vulnerabilities in Microsoft Office 365 in regard to SAML (0)

2016 (3)

08.09. [BugBounty] Decoding a $😱,000.00 htpasswd bounty (14)
11.06. [Research] Phishermans Friend – Getting control over a phishing backend (4)
17.05. [BugBounty] Sleeping stored Google XSS Awakens a $5000 Bounty (15)

2015 (3)

09.10. Digging into the Shopify POS Firmware (Part 1) (0)
15.06. [Research] – Stop OSX Spotlight from sending your location (2)
07.01. [BugBounty] Papyal XML Upload Cross Site Scripting Vulnerability (7)

2014 (12)

15.12. [BugBounty] Reflected Cross Site Scripting at Paypal.com (3)
10.12. [BugBounty] malicious redirect on mailroom.prezi.com (0)
17.11. [BugBounty] Reflected Cross Site Scripting BillMeLater (2)
17.11. [Research] SSH Honeypot (honey.it-securityguard.com) (0)
11.11. [BugBounty] Paypal stored XSS + Security bypass (1)
05.11. [BugBounty] Paypal DOM XSS main domain (1)
31.10. [BugBounty] The 5000$ Google XSS (6)
16.10. [BugBounty] Yahoo phpinfo.php disclosure (1)
02.10. [WordPress] 3x vulnerable Chat Plugins (1)
17.06. Google Chrome Security: Multiple leading slashes in URLs may confuse some server-side XSS filters (0)
21.05. [Bug Bounty] Prezi (map.prezi.com) Path Traversal (1)
20.04. [Bug Bounty] A Tale of 7 Vulnerabilities (2)

2013 (8)

11.11. We’re on heise.de [German] found 160 Sites Vulnerable to XSS (0)
06.07. PHP 5.3.3-5.3.6 Exploit + Bind Shell (0)
06.07. How to reset Root Password on Ubuntu/Debian (0)
07.05. From nobody to Root Advanced SQL-Injection (0)
16.03. Kali Linux – The most advanced penetration testing distribution (0)
10.03. iTunes debugging disabling ptrace with LLDB (0)
03.03. SQL-Injection Article Admin Magazine (0)
20.01. [BugBounty] Yahoo phpinfo.php disclosure (0)