Tag: bugbounty

18 posts

Latest Post Old but Gold - Attack and Defend the Sys Admins by Andy Gill public
public

Reviving and Refactoring DNS Enum

bugbounty tool Getting Started

I have been using Lepus for a number of years as it is one of the better subdomain enumeration tools.

Read Post
Andy Gill

Leveraging Expression Language Injection (EL Injection) for RCE

public bugbounty

Expression Language injection or EL Injection for short is an attack vector I'd never heard of until recently. This post talks about leveraging EL for RCE.

Read Post
public

NMAP Tips: RTFM?

ltr101 basics
Andy Gill
public

LTR101: My First CloudFront Domain Takeover/Hijack

weekend writeup
Andy Gill
public

May the Shells be with You - A Star Wars RCE Adventure!

bugbounty RCE
Andy Gill
public

Blind XXE - Hunting in the Dark

learning bugbounty
Andy Gill
public

[Tools Release] GoogD0rker & AttackDeploy

tool project
Andy Gill
public

LtR101: Selling Yourself & Hacking Your Career Path

ltr101 learning
Andy Gill
public

Bug Bounty Forum AMA (x-post from BBF)

bugbounty AMA
Andy Gill
public

LtR101: Book Published

ltr101 bugbounty
Andy Gill
public

Web Application Testing - Tooling

Getting Started bugbounty
Andy Gill