Hey guys, welcome again 😁

In this blog, I’ll dive into how I found an information disclosure in one of the biggest tech giants, Amazon!

First of, I started with a subdomain scan. I used this (not sponsored) tool free online subdomain scanner for this purpose which does the work quite nicely!

After searching for the subdomains, I manually started scanning each one.

Mostly, the pages were blank and returned some blank codes like 404.

But, One certain subdomain caught my attention. It disclosed information about the backend and an error stack trace containing a lot of information.

I reported this on their BBP (Bug Bounty Program) on HackerOne and it was not in scope of that program. But they still paid me a bonus of $100 classified as low vulnerability.