Hi everyone ! My blog has been unpublished for almost a year now, so I needed a new post … Here is an write-up from a recent P1 found and exploited on an external bug bounty program which led to… Continuer la lecture
This summer I came across the Bug Bounty program of the Dutch Government, and I saw that as a reward it offers you a super cool t-shirt ! I have to redo my wardrobe, so why not give it a… Continuer la lecture
Amateur of bounty bugs and web application security for a few months already, I fell during my recognition phase on an exotic sub-domain, containing an Adobe ColdFusion instance. And why not play with it ! Default credential The administrator account… Continuer la lecture
La VM suivante, après la CTF4 ! Scanner Une fois la machine identifiée sur le réseau, on va voir ce qu’elle nous dit : $ nmap -sS 192.168.142.131Starting Nmap 7.60 ( https://nmap.org ) at 2019-02-21 21:12 CETNmap scan report for 192.168.142.131Host… Continuer la lecture