Hello Guys, I Would Like To Share This Report Has been reported To Private Program In Hackerone
Summary
I have discovered S3 bucket and tested it via the AWS command-line tool in Linux. It looks like permissions are not well configured and allow Access raw Files
First You Need To…
This Write-up Very useful for Bug Hunters and System Admins and Web Developers
Summary
if you are using ngnix as web server in production or staging you may be configure the alias directives in the wrong way and that’s lead To Path Traversal Attack which mean The Attacker Cloud Be…
Rate Limit definition
In computer networks, rate limiting is used to control the rate of requests sent or received by a network interface controller. It can be used to prevent DoS attacks and limit web scraping
some packages you can use to prevent Rate Limit Attacks these packages prevent based…
My Name Is Mostafa I Am Working As information Security Engineer And My Part Time Doing Some Bug Hunting
I Found 2 Vulnerabilities In The Different Subdomains in Razer
The First One is reflected XSS in (http://drivers.razersupport.com)
When I Searching To XSS Looked To Refelected Params I Found CSRF Token…
