It started with: "When making a request using (Node.js) HTTP get with the path set to '/café🐶', the server receives /café=6" Ended with: SSRF via Request Splitting, impressive and scary at the same time, indeed. www.rfk.id.au/blog/entry/s...

is #curl still being developed? Well, that's wrap-up the matter, interesting insights on the matter from uncle curl himself... I still though have the same question 🙋 but from the financial perspective? daniel.haxx.se/blog/2025/11...

The path to venv is the sourcebut it's not sanitized properly and injected 💉 into the activate script leading to is command injection.

I guess 02 vulnerabilities: when resolving the symlink, attacker can switch it after the resolving (race condition, aftertime Check). Have you thought about nested symlinks, I love ♥️ this one. Very scarce. Realpath would resolve the symlink once. How About if the destination is another symlink

`CTRL+SHIFT+T` on Firefox is the best keyboard shortcut ever. It can instantly reopen the last closed tab. Amazing, Special thanks fly to the @firefox member of team who did that.

Oncle curl got a gold medal 👏👏 daniel.haxx.se/blog/2025/1...

If the server-side relies on the browser's incoming Content-Type as a #CSRF protection, you can omit the CT entirely using a Blob object as a fetch() body to perform the state-changing operation, and if #CORS is permitted, leak the unleakable. nastystereo.com/security/cr... #BugBounty

does not that make you vulnerable to RCE somehow from clipboard value as a source of injection to shell pwn ? L13 : gist.github.com/honoki/c4ec0...

TBH @zapier is really very practical and awesome ... #KeepUpWithGreatWork

Mama Mia... When the hacking stars ⭐ ✨ do align... The results are amazing API hacking full pros access samcurry.net/hacking-club...

AI generat e self contained docker compose files are mind blowing 🎉

AI can't do that jineeshak.github.io/posts/Chaini...

Arbitrary File overwrite... Interesting one

A code review approach and two bypasses or more

We are super excited to share that we acquired the Shift Plugin (shiftplugin.com) and we are making it free to Caido paid users 🚀 Shift is a smart AI companion for your hacking. It can craft payloads, Match&Replace rules, HTTPQL queries, etc. All details here: caido.io/blog/2025-07...

Scary beast .. !

300$ for a Jira full read SSRF... What a waste of time and skill! #BugBounty bugcrowd.com/disclosures/...

To level up my #BugBounty game I use #Scribe, it Ai generates a steps to follow screenshots basedd on a recording www.scribehow.com/lp/home?via=a

Amazing 🐺

SQL Injection despite using prepared statements? 🧐 Turns out that SQL syntax can be ambiguous! Learn how this has led to vulnerabilities in several popular PostgreSQL client libraries: www.sonarsource.com/blog/double-... #appsec #security #vulnerability

A nice and a sunny day 🌞

"Please provide your professional email address to subscribe" ... sure , @wearehackerone.com follow me for more free bypasses 😎

TIL it's possible to search among opened Firefox tabs by prefixing your search with "%" 🤯 As a keyboard maximalist, the workflow should be "Ctrl-T + %search criteria + up/down + Enter" 🦥 support.mozilla.org/en-US/kb/add...

Impressive what we can quickly fire with AI

I have great respect for the unknown and occasional vulnerability researcher who emerges from time to time with a killer discovery...

@saur1n.bsky.social hey love the ssrf vuln outputs... Is there something more behind the scene...

I'm starting a new series called: Weird SSRF outputs

#curl is a precision weapon, love it ♥️

Why CTRL+F for web page text searching in #Mozilla Firefox browser does not support an enable/disable regex support ?! or am I a freak for asking ?

/proc/self/cwd/ is a symlink pointing to the current working directory of the process that is accessing it ... Never lose sight of the process's CWD and what underneath again 🫡

A simplified guide to vulnerability disclosure through GitHub for Open Source maintainers github.blog/security/vul... Personal opinion: comparing a software vulnerability to a once home faulty lock is a very smart move.

I hate this unilateral company emailing approach! In sum, you have the right to send me a message and I can't do the same, And reply, WTH? ✌🏼 Hello@ rocks 🥊

Here's a challenge. There are at least two valid solutions! Solve it to discover a nice bug bounty tip! Play here 👉 https://challenges.ethiack.ninja/leak-the-secret/

While listening to the @ctbbpodcast.bsky.social, I discovered that my own blog was vulnerable to Cache Deception! It would have allowed anyone to send me a link and then retrieve all hidden posts. This sent me down a caching deep dive, check out the details here: jorianwoltjer.com/blog/p/codin...

You were supposed to destroy them, you were the chosen one !

Raining crits ... not even the season ...

"it's practically impossible to have a human-friendly text-based language, and at the same time be able to avoid giving attackers the ability to modify the control channel's content"

To my little understanding, a vulnerability is kind of road that shouldn't be taken in a certain way, but for some specific input it sneak down into and may cause unintended shenanigans. Right ? So why this is not a vulnerability ? github.com/pypa/pip/iss...

Similar True stories coming...

Never tought about such an amount of issues

@jameskettle.com hey I have this question and I always had it, a bit avoiding to ask. You seem to figure out brand new ways to exploit and hack websites. And then you publish wonderful research. what I am missing is how do you monetize all this ? hw d u bring food to the table?

Hurry and kill. The waiting to. Celebrate 🎉 ego. I. Me

Honeypot 🍯

mitmproxy 11.1 is out! 🥳 We now support *Local Capture Mode* on Windows, macOS, and - new - Linux! This allows users to intercept local applications even if they don't have proxy settings. More details are at mitmproxy.org/posts/local-.... Super proud of this team effort. 😃

We are f*cked #BugBounty

@boredabdel.bsky.social master, can you give us advices regarding the pace and speed of running

Beautiful 😍

True story !