Hackrate is now a CVE Numbering Authority (CNA) assigning CVE IDs for vulnerabilities that are discovered, validated, & coordinated through the Hackrate Ethical Hacking Platform
https://t.co/5wYOAAzlIV
#cve#cna#vulnerabilitymanagement#vulnerability@CVEnew@hackrate
Call any number (even premium-rate ones) from a locked iPhone and confirm whether a number/email is saved in the contact list:
https://t.co/cfMQAUDMns
#iphone#apple#privacy
We've just released Shadow Repeater, for AI-enhanced manual testing. Simply use Burp Repeater as you normally would, and behind the scenes Shadow Repeater will learn from your attacks, try payload permutations, and report any discoveries via Organizer.
One does not simply walk to the Vault ✋
But every quest is easier with the support of our allies! Thank you @Bugcrowd for being the Diamond Sponsor of #BusinessCTF24. Register now for the biggest #CTF competition for corporate teams: https://t.co/ZuS1tIys0n
Just published a writeup on my account takeover vulnerability in ChatGPT, using a really cool web cache deception technique. Waited a while to finally publish this, enjoy :)
https://t.co/P1vHoSzABX
GAP is now the @Burp_Suite BApp store 🤘
Go give it a go, give some feedback, give it a rating, and go get all those links, parameters and custom wordlists!
#BugBounty
You probably know that
<Img Src=javascript:alert(1)>
Doesn't work anymore (although several lists out there have it)
But if you add
OnError=location=src
It does!
https://t.co/TuPJjCOuWg
Not so useful but who knows your next inline injection scenario?
#XSS 😎