Monthly List of blogs, To community from community [APRIL]
List of blogs which are very much worth reading (Latest writups, Old writeup, Tools). Specially for bug bounty hunters. -To all authors Thanks a lot for writing and sharing๐ [APRIL] 01/04/2020 1) Yahoo – Root Access SQL Injection – tw.yahoo.com 2) Best of power shell practical 3) GitHub Enterprise SQL Injection 4) CMS Pentesting article 5) Post Exploitation on Saved Password with LaZagne 6) API pentesting 05/04/2020 1) Exploiting the JSON CSRF with method override technique 2) Abusing XSS Filter: One ^ leads to XSS(CVE-2016-3212) 3) How I bypassed the OTP verification process? Part — 1 4) How I bypassed the OTP verification process? Part — 2 5) How I bypassed the OTP verification process? Part — 3 6) SQL Injection Vulnerability bootcamp.nutanix.com 10/04/2020 1) Very cool XXE bug in a Web Service 2) Exploiting an SSRF: Trials and Tribulations 3) Yahoo Mail stored XSS 4) Combination of techniques lead to DOM Ba
