CIDR discovery باید چطوری انجام شه وقتی رنج آیپی برا خود کمپانی نیست؟ سورس خوب برا CIDR discovery و ASN discovery چی هست؟

I just published a write-up about an account takeover where I abused reverse proxy to hijack the OAuth Code. blog.voorivex.team/hijacking-oaut…

I think the idea of keeping it simple is especially true for web testing. Long before you start trying to implement complex techniques you need to get down the basics of

How to stay broke as bug bounty hunter. 1- make an assumption like: something is safe, something wouldn’t work, something has already been tested. 2- never double check it 3- move on

Graphql is fun to poke

Past few months I've been diving deeper into JS and GraphQL, and doing few other things related to web security that I sucked at and It's paying off. I truly appreciate  یاشو and his team for helping me through this, shout out to you guys

CTF players be like

It’s so fun looking for JSONP or stuff like that, I submitted a few of them to the cspbypass.com repo by renniepak now you can bypass CSP restrictions for this rules: *.gitlab.com *.onetrust.com *.forismatic.com *.ipify.org *.dblp.org *.ipinfo.io *.opendatasoft.com

Just found an interesting behavior in Firefox that can be used for XSS: If a response lacks the Content-Type header, Firefox renders it as text/plain. But if the URL ends with an extension like .html, Firefox treats it as that. #bugbounty #bugbountytips

day 7 of 2026