A curated list of delightful writeups and POCs
Please read the Contribution Doc
- Cross Site Scripting - XSS
- Cross Site Request Frogery - CSRF
- Server Side Request Frogery - SSRF
- Application/Business Logic
- SQL Injection - SQLi
- InDirect Object Reference - IDOR
- Code Execution
- Reverse Engineering
- DNS Related
- Brute-force
- Subdomain Takeover
- Open URL Redirection
- Research Papers
- Miscellaneous
- XSS that existed at accounts.google.com - @kinugawamasato
- admin.google.com Reflected Cross-Site Scripting (XSS) - @bbuerhaus
- XSS-es in Google Caja - @SecurityMB
- Content Types and XSS: Facebook Studio - @fin1te
- Facebook XSS via Cross-Origin Resource Sharing - @mattaustin
- Stored XSS at Parse - Dhaval
- XSS in OAuth flow of Paypal - Dhaval
- Reflected XSS through AngularJS sandbox bypass...McDonald - @finnwea
- Coming across an XSS vulnerability at Google sites is wrong I expected - ikuta_T
- Hacking Google for fun and profit - Manish Bhattacharya
- Unpatched (0day) jQuery Mobile XSS - EDUARDO VELA
- Reflected XSS in Etsy - Harry M Gertos
- [Sleeping stored Google XSS Awakens a $5000 Bounty] (https://blog.it-securityguard.com/bugbounty-sleeping-stored-google-xss-awakens-a-5000-bounty/) - [Patrik Fehrenbach ] (https://twitter.com/ITSecurityguard)
- [admin.google.com Reflected Cross-Site Scripting (XSS)] (https://buer.haus/2015/01/21/admin-google-com-reflected-cross-site-scripting-xss/) - Brett Buerhaus
- Stored XSS at exchange.onavo.com - Dhaval
- Facebook Simple Technical Bug worth 7500$ - Ashish Padelkar
- How I Could Steal Money from Instagram, Google and Microsoft - Arne Swinnen
- Facebook Vulnerability - Delete Any Video on Facebook - Dan Melamed
- Confirming new email/mobile number bug in Facebook - Lokesh Kumar
- How I hacked 62.5 million Zomato Users - Anand Prakash
- Facebook’s ImageTragick Story - @4lemon
- WD My Cloud Mirror 2.11.153 RCE and Authentication Bypass - Kacper Szurek
- 0day writeup: XXE in uber.com - Vladimir Ivanov
- Command injection which got me "6000$" from #Google - S Venkatesh
- Hijacking Broken Nameservers to Compromise Your Target - @IAmMandatory
- That (.) Which Made The Difference - Dhaval
- Domain Fronting Via Cloudfront Alternate Domains - Vincent Yiu
- Hijacking tons of Instapage expired users Domains & Subdomains - @emgeekboy
- The story of EV-SSL, AWS and trailing dot domains - Detectify
- How I discovered a 1000$ open redirect in Facebook - Yassine Aboukir
- Facebook Whitehat Vulnerability for 2013: Open Redirection in Facebook Mobile - Prakhar Prasad
- Dropbox Team Website Open Redirection - Prakhar Prasad
- Combining host header injection and lax host parsing serving malicious data - Detectify
- Compromising Apache Tomcat via JMX access - NCC Group UK
- Facebook's Bug - Unauthorized access to credit/prepaid card details - Pranav Hivarekar
- Constructing an XSS vector, using no letters - Charles Neill
- Order Facebook Friends by Facebook Recruiting Technical Coefficient - Philippe Harewood
- Web Cache Deception Attack - Omer Gil