Blog

Leaked .git folder leads to RCE

Today I wanted to share my first big success story from my bug bounty attempts. Although the issue has been fixed, the report has not been officially disclosed yet. Therefore, the target today will be everyone’s favorite “redacted.com”. While my methodology for approaching a new target seemingly evolves every time I go through it, one…


Follow My Blog

Get new content delivered directly to your inbox.