all InfoSec news
195 - Stealing Secrets with Security Advisories and CorePlague [Bug Bounty Podcast]
March 14, 2023, 8 p.m. | DAY[0]
DAY[0] www.youtube.com
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/195.html
[00:00:00] Introduction
[00:00:25] Abusing Hop-by-Hop Header to Chain A CRLF Injection Vulnerability
[00:04:26] HubSpot Full Account Takeover in Bug Bounty
[00:12:22] Unauthorized access to organization secrets in GitHub
[00:17:39] CorePlague: Severe Vulnerabilities in Jenkins Server Lead to RCE
[00:26:37] Firefly: a smart black-box fuzzer for web applications testing …
abusing access account account takeover applications bounty box bug bug bounty crlf injection vulnerability exploiting exposure fuzzer github header hubspot injection introduction jenkins organization podcast rce secrets security security advisories server smart stealing takeover unauthorized access vulnerabilities vulnerability web web applications xss
More from www.youtube.com / DAY[0]
253 - A Retrospective and Future Look Into DAY[0]
1 month, 2 weeks ago |
www.youtube.com
251 - RCE'ing Mailspring and a .NET CRLF Injection [Bug Bounty Podcast]
2 months, 2 weeks ago |
www.youtube.com
Future of Exploit Development Follow-up (Episode 250)
2 months, 2 weeks ago |
www.youtube.com
247 - Hacking Google AI and SAML [Bug Bounty Podcast]
2 months, 4 weeks ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)