YoKo Kho

Category: Web Apps

Collection of the bug that specifically found at web application

Optimizing Hunting Results in VDP for use in Bug Bounty Programs - From Sensitive Information Disclosure to Accessing Hidden APIs which can be used to Retrieve Customer Data

A story when Allah willed me to tried to optimize my findings in the Points-Only program to be able to get 6 paid P1 issues in...

November 15, 2020

Bug Report / Web Apps / Write-Up

From Recon to Bypassing MFA Implementation in OWA by Using EWS Misconfiguration

A story about how I Finally could use an AD account that unenrolled to MFA, by using an EWS Misconfiguration to Access Email Inbox and (Having...

June 19, 2020

Intercept Server Responses Feature on Burpsuite

Bug Report / Web Apps / Write-Up

From 3,99 to 1,650 USD (Part I) – Simple Vertical Privilege Escalation by Changing HTTP Response

A story about how I got several simple bugs (1 P2, 1 P3, and 2 P4s) on a target (that just allow Specific Country Code to...

June 6, 2020

Bug Report / Web Apps / Write-Up

From Recon to Optimizing RCE Results – Simple Story with One of the Biggest ICT Company in the World

How I Finally could Got into an Internal Network (and could accessing all of their internal assets) at One of the Biggest ICT company in the...

February 19, 2020

Bug Report / Web Apps / Write-Up

Race Condition that could Result to RCE – (A story with an App that temporary stored an uploaded file within 2 seconds before moving it to Amazon S3)

In the name of Allah, the Most Gracious, the Most Merciful. – Part I from (hopefully) IV Parts – Update I: Added a “Reference” Section. Update...

September 14, 2019

Bug Report / Web Apps / Write-Up

IDOR (at Private Bug Bounty Program) that could Leads to Personal Data Leaks

In the name of Allah, the Most Gracious, the Most Merciful. Please kindly visit this simple paper directly to looking this release in simple:[English Version] IDOR...

April 17, 2018

Bug Report / Web Apps / Write-Up

Ribose – IDOR with Simple CSRF Bypass – Unrestricted Changes and Deletion to other Photo Profile

In the name of Allah, the Most Gracious, the Most Merciful. Please kindly visit this simple paper directly to looking this release in simple:[English Version] Ribose — IDOR...

April 16, 2018

Bug Report / Web Apps / Write-Up

Bypassing the Current Password Protection at PayPal Tech-Support

In the name of Allah, the Most Gracious, the Most Merciful. Please kindly visit this simple paper directly to looking this release (December, 2017 Article):[English Version]...

December 26, 2017

Bug Report / Web Apps / Write-Up

Information Disclosure at PayPal and Xoom (PayPal Acquisition) via Simple Google Dork – 1,000 USD

In the name of Allah, the Most Gracious, the Most Merciful. Please kindly visit this simple paper directly to looking this release:[English Version] PayPal – Information...

December 26, 2017

Bug Report / Web Apps / Write-Up

Turning Self-XSS into non-Self Stored-XSS via Authorization Issue at “PayPal Tech-Support and Brand Central Portal”

In the name of Allah, the Most Gracious, the Most Merciful. Please kindly visit this simple paper directly to looking this release:[English Version] PayPal — Turning Self-XSS into...

November 12, 2017

Latest Tweets

Retweet on Twitter YoKo Kho Retweeted

Nicolas Krassas @Dinosn·

June 18, 2021

An exciting journey to find SSRF , Bypass Cloudflare , and extract AWS metadata ! https://infosecwriteups.com/an-exciting-journey-to-find-ssrf-bypass-cloudflare-and-extract-aws-metadata-fdb8be0b5f79?source=rss----7b722bfd1b8d---4

Twitter 1405882308301832197

Retweet on Twitter YoKo Kho Retweeted

Emad Shanab - أبو عبد الله @Alra3ees·

June 18, 2021

Host Header Injection:-

CC @omespino

https://link.medium.com/w8U0Cmz6bhb
https://link.medium.com/yfM33zA6bhb
https://sites.google.com/site/testsitehacking/10k-host-header
https://link.medium.com/uRmqVxT6bhb
https://link.medium.com/KzO5UK06bhb
https://link.medium.com/jZ8Gd816bhb
https://link.medium.com/1DbUUj46bhb
https://link.medium.com/hoXVNp56bhb
https://link.medium.com/2n61hn66bhb
https://link.medium.com/rQhotO76bhb

Twitter 1405938929111650309

Retweet on Twitter YoKo Kho Retweeted

Evan Custodio @defparam·

June 17, 2021

New blog post for pentesters and bug bounty hunters: A walk though on how to set up Burp Suite for iOS App testing on both a physical jailbroken iOS device and also an emulated jailbroken iOS device on @CorelliumHQ #bugbounty
https://defparam.medium.com/ios-app-testing-through-burp-on-corellium-fe59ed849516

Twitter 1405645455149735939

Retweet on Twitter YoKo Kho Retweeted

Mustafa Can İPEKÇİ @mcipekci·

June 16, 2021

I wanna share my recent experience on how I did achieve RCE on file upload thats not revealing path of the where it's actually loaded. #bugbountytip

Twitter 1405272871249711104

Retweet on Twitter YoKo Kho Retweeted

publiclyDisclosed @disclosedh1·

June 17, 2021

Brave Software disclosed a bug submitted by xiaoyinl: https://hackerone.com/reports/1077022 - Bounty: $1,000 #hackerone #bugbounty

Twitter 1405401127957499904

Category: Web Apps

Optimizing Hunting Results in VDP for use in Bug Bounty Programs - From Sensitive Information Disclosure to Accessing Hidden APIs which can be used to Retrieve Customer Data

From Recon to Bypassing MFA Implementation in OWA by Using EWS Misconfiguration

From 3,99 to 1,650 USD (Part I) – Simple Vertical Privilege Escalation by Changing HTTP Response

From Recon to Optimizing RCE Results – Simple Story with One of the Biggest ICT Company in the World

Race Condition that could Result to RCE – (A story with an App that temporary stored an uploaded file within 2 seconds before moving it to Amazon S3)

IDOR (at Private Bug Bounty Program) that could Leads to Personal Data Leaks

Ribose – IDOR with Simple CSRF Bypass – Unrestricted Changes and Deletion to other Photo Profile

Bypassing the Current Password Protection at PayPal Tech-Support

Information Disclosure at PayPal and Xoom (PayPal Acquisition) via Simple Google Dork – 1,000 USD

Turning Self-XSS into non-Self Stored-XSS via Authorization Issue at “PayPal Tech-Support and Brand Central Portal”

Search

Recent Posts

Categories

Latest Tweets