Hidden Tricks to Spot Phishing Emails Before They Trick You! 网络钓鱼邮件伪装成可信来源，诱骗用户泄露信息或点击恶意链接。这些邮件常来自银行或公司等看似可信的机构，实则隐藏风险。学习识别和分析钓鱼邮件对保护个人信息至关重要。... 2025-4-25 06:13:55 | 阅读: 9 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com phishing fakes trouble spot analysis

Hostile Host Headers: How I Hijacked the App with One Sneaky Header 一位网络安全研究员在漏洞挖掘中经历了一次从默默无闻到成功突破的过程。他通过发送各种请求未果后，意外发现一个关键的HTTP头信息，最终成功入侵了一个内部安全网站。... 2025-4-25 06:7:50 | 阅读: 5 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com hey cold spoke drill httpx

Hostile Host Headers: How I Hijacked the App with One Sneaky Header 文章讲述了一次漏洞赏金经历,作者通过隐藏请求头发现并利用漏洞,最终实现对应用程序的劫持。... 2025-4-25 06:7:50 | 阅读: 3 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com nuclei juicy silence gave quiet

Unrestricted Access to All User Information | REST API Oversharing 作者在HackerOne上发现了一个敏感数据泄露漏洞：通过将API端点从`/api/user/me`改为`/api/user/all`，可以获取所有用户信息及3,156个验证令牌。... 2025-4-25 06:7:14 | 阅读: 2 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com onboarding subdomain jsonify exposure

GitLab CI for Python Developers: A Complete Guide 文章介绍了如何使用GitLab CI/CD自动化Python项目的测试、代码验证和部署流程。通过配置.gitlab-ci.yml文件，开发者可以实现代码测试、构建环境隔离以及代码风格检查等功能。... 2025-4-25 06:6:46 | 阅读: 6 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com gitlab python oleksandr validated chumak

I Used AI to Write a Payload… And It Worked (Sort of) 2025-4-24 05:57:9 | 阅读: 4 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com

I Used AI to Write a Payload… And It Worked (Sort of) 2025-4-24 05:57:9 | 阅读: 6 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

Amul India Data Leak: How India’s Dairy Leader Left User Data Vulnerable 2025-4-24 05:55:19 | 阅读: 9 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

How I discovered a hidden user thanks to server responses ? 2025-4-24 05:53:57 | 阅读: 5 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com

How I discovered a hidden user thanks to server responses ? 2025-4-24 05:53:57 | 阅读: 6 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

PNPT Exam Review — 2025 2025-4-24 05:53:13 | 阅读: 2 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

How to Build a Threat Detection Pipeline from Scratch (Like a Cyber Ninja!) 2025-4-24 05:52:59 | 阅读: 7 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

Nothing changed… except for one detail. And that was enough to hack 2025-4-24 05:52:24 | 阅读: 4 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com

Nothing changed… except for one detail. And that was enough to hack 2025-4-24 05:52:24 | 阅读: 6 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

Email Verification Bypass during Account Creation | Insecure Design 2025-4-24 05:51:45 | 阅读: 3 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com

Email Verification Bypass during Account Creation | Insecure Design 2025-4-24 05:51:45 | 阅读: 4 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

How to Create a Botnet Using One Tool: A Proof of Concept for Educational Purposes Aspiring… 2025-4-24 05:51:27 | 阅读: 5 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com

How to Create a Botnet Using One Tool: A Proof of Concept for Educational Purposes Aspiring… 2025-4-24 05:51:27 | 阅读: 1 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

Burp, Bounce, and Break: How Web Cache Poisoning Let Me Control the App 2025-4-24 05:51:16 | 阅读: 1 | 收藏 | InfoSec Write-ups - Medium - infosecwriteups.com

Burp, Bounce, and Break: How Web Cache Poisoning Let Me Control the App 2025-4-24 05:51:16 | 阅读: 3 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com