Sean (zseano) – Medium

Sean (zseano)

Finding XSS on .apple.com and building a proof of concept to leak your PII information

Back in February of this year I hacked with members of BugBountyHunter.com on a public bug bounty program and we chose Apple as our target…

7 min readNov 23, 2021

--

2

Finding XSS on .apple.com and building a proof of concept to leak your PII information

--

2

Sean (zseano)

1year anniversary of BugBountyHunter & our second Hackevent

Sorry for the silence from me lately with regards to any new writeups or anything interesting! The new dad life has been something…

4 min readNov 19, 2021

--

1

1year anniversary of BugBountyHunter & our second Hackevent

--

1

Sean (zseano)

BugBountyHunter Chats — Getting to know 0xblackbird, YouGina, JTCSec and HolyBugx

BugBountyHunter.com opened early November 2020 and the amount of growth we have seen in members has been phenomenal! Members have been…

18 min readJul 12, 2021

--

BugBountyHunter Chats — Getting to know 0xblackbird, YouGina, JTCSec and HolyBugx

--

Sean (zseano)

Welcoming new members on BugBountyHunter.com

We’re finally happy to announce we have re-opened membership on BugBountyHunter.com and we’re ready to welcome new members.

4 min readJun 4, 2021

--

3

Welcoming new members on BugBountyHunter.com

--

3

Sean (zseano)

BugBountyHunter.com future plans

Greetings!

4 min readApr 5, 2021

--

1

BugBountyHunter.com future plans

--

1

Sean (zseano)

We’re back! BugBountyNotes relaunched as BugBountyHunter.com

Hi there!

7 min readNov 4, 2020

--

1

We’re back! BugBountyNotes relaunched as BugBountyHunter.com

--

1

Sean (zseano)

The feature works as intended, but what’s in the source?

This is another bug that was right in front of everyone because if you didn’t purposely look for it you’d never realise personal…

3 min readAug 8, 2020

--

The feature works as intended, but what’s in the source?

--

Sean (zseano)

New features means new bugs

Sometimes new features designed to generate revenue for a company can be rushed and sometimes not enough thought has gone into how to…

3 min readJul 30, 2020

--

New features means new bugs

--

Sean (zseano)

Using XAMPP and Burp Intruder when scanning for subdomains to look for interesting behaviour & code

Do any of you use Intruder when checking out subdomains? For me personally I use a tool called “XAMPP” which lets me run PHP locally…

5 min readJul 30, 2020

--

2

Using XAMPP and Burp Intruder when scanning for subdomains to look for interesting behaviour & code

--

2

Sean (zseano)

Easily leaking passenger information on an Airline

This post is going to outline how I simply applied my methodology and managed to find multiple vulnerabilities leaking airline passenger…

4 min readFeb 4, 2020

--

Easily leaking passenger information on an Airline

--

Sean (zseano)

Sean (zseano)

UK WebApp Security Researcher. Creator of BugBountyHunter— designed to help people learn and get involved with hacking. zseano.com & bugbountyhunter.com

Following

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams