A lot of people might know how to share the private video and can access that video but here the interesting thing is now this vulnerability can be used to see private video after revoking the access. For example: Let’s assume a scenario suppose you have uploaded a private video…

Hola Guys!!! I was doing hunting on website it is private site let’s take as redacted.com, …

Hello guys, today am sharing a method on how to be completely anonymous.. These steps is used by a black hat hackers .(Only for educational purpose) Always remember, only VPN won’t make you anonymous:( So let's get started: Requirements: Computer/Laptop, Brain, Basic knowledge of computer and some tools we will…

7 Terms Should be in Mind While Writing A Report Description is the introduction part of the report. This can be considered as a short explanation of the report title, where the reporter gives general information of the vulnerable endpoint or component, followed by the type and causes of the vulnerability found. Reproduction is the most important part of the…

Hey….! Hackers We all have remember the time when we used to create a bunch of applications to check for vulnerabilities in Android applications. Then Drozer came into existence, an open source all in one combination to check your application against known vulnerabilities….! To know about installation and set up…

Some of the most common questions out there in the industry are “what is your methodology?” or “how do you look for bugs”? This post will be an attempt to answer that from the point of view of an average and continuously learning bug hunter. This has certainly evolved over…

Summary: There is an Open Redirect on https://redacted.com/exit.php?url= due to the application not checking the value passed by the user to the “url” parameter. Description: Unchecked redirects occur when an application redirects to a destination controlled by attackers. This often occurs in functionality returning users to a previous page, e.g…

This post is about a misconfiguration in password reset I found on a popular help desk software sometimes ago where they were leaking the reset token. And guess what? This was not in the Referer header :D but right in the response of the request itself. In this case one…

Hi guys whatsup! This is Naveen an security researcher . Here im presenting my research on unrestricted file upload vulnerablities. In this article , we are going to learn about what is unrestricted file upload vulnerability ? what we can do with this? Types of filters and filter bypass techniques …