all InfoSec news
How I got Access to Auth0 Management API !!
Oct. 29, 2023, 7:01 p.m. | Tarun Koyalwar
InfoSec Write-ups - Medium infosecwriteups.com
How I got Access to Auth0 Management API !!
Recently, while hunting on a private bug bounty program I got full API Access to target’s Auth0 Management API. This was my first comeback vuln/bounty after taking a pause from Bug Bounty Hunting.
https://medium.com/media/265d7f51a2c7e2c3b537df3f86cac459/hrefTarget and Initial Steps
Target was a staging env for which I had some credentials assigned. Let’s assume the target was `stage.application.hunt`. It was a basic SPA built using React and the backend I believe is NodeJS …
More from infosecwriteups.com / InfoSec Write-ups - Medium
Subdomain takeover via AWS s3 bucket
4 days, 5 hours ago |
infosecwriteups.com
Understanding the CrowdStrike 2024 Global Threat Report
4 days, 5 hours ago |
infosecwriteups.com
Prevent Cross-Site Scripting Attacks in Node.js
4 days, 5 hours ago |
infosecwriteups.com
HTB: Bizness walkthrough
4 days, 5 hours ago |
infosecwriteups.com
CozyHosting HTB Easy | Walkthrough
4 days, 5 hours ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)