If Allah willed it, will be back soon!

An exciting journey to find SSRF , Bypass Cloudflare , and extract AWS metadata ! https://infosecwriteups.com/an-exciting-journey-to-find-ssrf-bypass-cloudflare-and-extract-aws-metadata-fdb8be0b5f79?source=rss----7b722bfd1b8d---4

Host Header Injection:-

CC @omespino

https://link.medium.com/w8U0Cmz6bhb
https://link.medium.com/yfM33zA6bhb
https://sites.google.com/site/testsitehacking/10k-host-header
https://link.medium.com/uRmqVxT6bhb
https://link.medium.com/KzO5UK06bhb
https://link.medium.com/jZ8Gd816bhb
https://link.medium.com/1DbUUj46bhb
https://link.medium.com/hoXVNp56bhb
https://link.medium.com/2n61hn66bhb
https://link.medium.com/rQhotO76bhb

New blog post for pentesters and bug bounty hunters: A walk though on how to set up Burp Suite for iOS App testing on both a physical jailbroken iOS device and also an emulated jailbroken iOS device on @CorelliumHQ #bugbounty
https://defparam.medium.com/ios-app-testing-through-burp-on-corellium-fe59ed849516

I wanna share my recent experience on how I did achieve RCE on file upload thats not revealing path of the where it's actually loaded. #bugbountytip

Brave Software disclosed a bug submitted by xiaoyinl: https://hackerone.com/reports/1077022 - Bounty: $1,000 #hackerone #bugbounty