all InfoSec news
#NahamCon2024: OAuth Secret | @BugBountyReportsExplained
June 7, 2024, 1 p.m. | NahamSec
Nahamsec www.youtube.com
For many hackers, changing the redirect_uri to an attacker-controlled host is the only attack they know. But in 2024 it won't work. We have to work harder - exploit and chain multiple smaller bugs together to get the account takeover. Those chains will be the topic of this talk.
📚 If you want to learn bug bounty hunting from me: bugbounty.nahamsec.training
💻 If you want to practice soem …
account account takeover attack attacker bugs changing exploit hackers host notifications oauth secret subscribe takeover video work
More from www.youtube.com / Nahamsec
My Favorite API Hacking Vulnerabilities & Tips
1 day, 21 hours ago |
www.youtube.com
My Favorite Ethical Hacking Books
1 week, 1 day ago |
www.youtube.com
#NahamCon2024: Practical AI for Bounty Hunters | @jhaddix
1 week, 5 days ago |
www.youtube.com
Day in the Life of an Ethical Hacker/Penetration Tester
1 week, 6 days ago |
www.youtube.com
This 'Realistic' Web CTF Was Impossible!
2 weeks, 1 day ago |
www.youtube.com
#NahamCon2024: OAuth Secret | @BugBountyReportsExplained
2 weeks, 4 days ago |
www.youtube.com
#NahamCon2024: Deep Dive Into AWS Instance Metadata | @congon4tor
2 weeks, 5 days ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
Information Technology Specialist I: Windows Engineer
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
Information Technology Specialist I, LACERA: Information Security Engineer
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Senior Product Designer (Freelance)
@ CybelAngel | Paris, Île-de-France, France - Remote
Junior Accounts Receivable Specialist
@ Nozomi Networks | Remote - US
Key Account Director
@ Darktrace | Phoenix
Security Network Engineer (SNE)
@ Natech ∙ Financial Software | Athens, Attica, Greece