all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Writing a CodeQL query - the sink

Add to bookmarks
April 25, 2023, 10:31 a.m. | Bug Bounty Reports Explained

Bug Bounty Reports Explained www.youtube.com

Check out the full episode: https://youtu.be/F95U912u7OQ
📧 Subscribe to BBRE Premium: https://bbre.dev/premium
✉️ Sign up for the mailing list: https://bbre.dev/nl
📣 Follow me on Twitter: https://bbre.dev/tw

This video is an explanation of a CodeQL query to detect RCE via ZipSlip for which GitHub Security Lab rewarded me $5,500.

🖥 Get $100 in credits for Digital Ocean: https://bbre.dev/do

codeql detect github github security lab lab query rce security video writing

Visit resource

More from www.youtube.com / Bug Bounty Reports Explained

HTTP Multiline headers #bugbounty #bugbountytips #bugbountyhunter 1 week, 2 days ago | www.youtube.com
bug characters class down +12
Browser-powered desync #bugbounty #bugbountytips #bugbountyhunter 1 week, 3 days ago | www.youtube.com
bug characters class down +12
Trailer - HTTP feature you did not know about #bugbounty #bugbountytips #bugbountyhunter 1 week, 5 days ago | www.youtube.com
bug characters class down +12
Node.js’ strange behaviour leads to request smuggling #bugbounty #bugbountytips #bugbountyhunter 1 week, 6 days ago | www.youtube.com
bug characters class down +12
Request smuggling - do more than running tools! HTTP Request smuggling bug bounty case study 2 weeks ago | www.youtube.com
bug characters class down +12
Client-side path traversal #bugbounty #bugbountytips #bugbountyhunter 1 month, 1 week ago | www.youtube.com
adjust bug bug hunting case +10
These CSRFs are not mitigated by SameSite=Lax #bugbounty #bugbountytips #bugbountyhunter 1 month, 1 week ago | www.youtube.com
adjust bug bug hunting case +10
This differentiates top hunters from the rest #bugbounty #bugbountytips #bugbountyhunter 1 month, 1 week ago | www.youtube.com
adjust bug bug hunting case +10
This CSRF trick will help you find CSRFs in 2024 #bugbounty #bugbountytips #bugbountyhunter 1 month, 1 week ago | www.youtube.com
adjust bug bug hunting case +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cyber Security Culture – Communication and Content Specialist

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Container Hardening, Sr. (Remote | Top Secret)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

GRC and Information Security Analyst

@ Intertek | United States
View on infosec-jobs.com

Information Security Officer

@ Sopra Steria | Bristol, United Kingdom
View on infosec-jobs.com

Casual Area Security Officer South Down Area

@ TSS | County Down, United Kingdom
View on infosec-jobs.com
View more jobs