Finding XSS on .apple.com and building a proof of concept to leak your PII informationBack in February of this year I hacked with members of BugBountyHunter.com on a public bug bounty program and we chose Apple as our target…Nov 23, 20212Nov 23, 20212
1year anniversary of BugBountyHunter & our second HackeventSorry for the silence from me lately with regards to any new writeups or anything interesting! The new dad life has been something…Nov 19, 20211Nov 19, 20211
BugBountyHunter Chats — Getting to know 0xblackbird, YouGina, JTCSec and HolyBugxBugBountyHunter.com opened early November 2020 and the amount of growth we have seen in members has been phenomenal! Members have been…Jul 12, 2021Jul 12, 2021
Welcoming new members on BugBountyHunter.comWe’re finally happy to announce we have re-opened membership on BugBountyHunter.com and we’re ready to welcome new members.Jun 4, 20213Jun 4, 20213
The feature works as intended, but what’s in the source?This is another bug that was right in front of everyone because if you didn’t purposely look for it you’d never realise personal…Aug 8, 2020Aug 8, 2020
New features means new bugsSometimes new features designed to generate revenue for a company can be rushed and sometimes not enough thought has gone into how to…Jul 30, 2020Jul 30, 2020
Using XAMPP and Burp Intruder when scanning for subdomains to look for interesting behaviour & codeDo any of you use Intruder when checking out subdomains? For me personally I use a tool called “XAMPP” which lets me run PHP locally…Jul 30, 20202Jul 30, 20202
Easily leaking passenger information on an AirlineThis post is going to outline how I simply applied my methodology and managed to find multiple vulnerabilities leaking airline passenger…Feb 4, 2020Feb 4, 2020