XSS
Read More
Hunting Blind XSS on the Large Scale — Practical Techniques
In this article, I will reveal the techniques for detecting Blind Cross-Site Scripting at scale. We will dive into the
Tag: infosec
XSS
Read More
Hunting Blind XSS on the Large Scale — Initial Setup
The Blind Cross-Site Scripting is a pretty serious client-side vulnerability with serious consequences. This type of vulnerability enables attackers to
Blog
Read More
Mass Hunting for Leaked Sensitive Documents
Significant portion of crucial data and documents is now stored online as the paper documents are becoming less popular. There
Blog
Read More
Mass Hunting For Misconfigured S3 Buckets
In this publication, I would like to cover how it is possible to efficiently check millions of misconfigured S3 buckets
AXIOM
Read More
Creating Custom AXIOM Modules
In order to be successful in bug bounty, you have to be a little different from the crowd — use
Blog
Read More
Managing AXIOM Instances
As you probably learned from the previous part, it is usually a nice thing to have custom wordlists and tools
Infosec tools
Read More
Axiom Bug Bounty Tool Core Functionality
This is the second part of the Axiom Bug Bounty series. In this post, I will discuss the main features
Infosec tools
Read More
The Introduction to Axiom tool
I have been in the Bug Bounty world for a while and I would like to share my approach for