HackerTrans
TopNewTrendsCommentsPastAskShowJobs

hackerpain

no profile record

Submissions

Q&A with one of the Richest Bug Bounty hunters who made over $2M in bounties

savebreach.com
1 points·by hackerpain·vor 5 Jahren·0 comments

The embedded YouTube player told me what you were watching

bugs.xdavidhu.me
260 points·by hackerpain·vor 5 Jahren·104 comments

Linux Mint fixes screensaver bypass discovered by two kids

zdnet.com
16 points·by hackerpain·vor 5 Jahren·2 comments

Finding 0day to Hack Apple

github.com
5 points·by hackerpain·vor 6 Jahren·0 comments

Breaking the Google Audio ReCAPTCHA with Google's Own Speech to Text API

incolumitas.com
2 points·by hackerpain·vor 6 Jahren·1 comments

Testing a Proof of Concept of security bug

1 points·by hackerpain·vor 6 Jahren·0 comments

Ticketmaster Coughs Up $10M Fine After Hacking Rival Business

threatpost.com
3 points·by hackerpain·vor 6 Jahren·0 comments

Is Slack Going through a DDoS attack?

4 points·by hackerpain·vor 6 Jahren·0 comments

Patch. Bypass. Repeat: Story of a Facebook Page Admin Disclosure Bug Worth $5000

savebreach.com
1 points·by hackerpain·vor 6 Jahren·0 comments

Ask HN: How did you turn your failed business model into a successful venture?

1 points·by hackerpain·vor 6 Jahren·4 comments

Stealing private documents through a bug in Google Docs

savebreach.com
319 points·by hackerpain·vor 6 Jahren·138 comments

Silicon Valley's hunger problems grow during a time of record profits

nbcnews.com
1 points·by hackerpain·vor 6 Jahren·0 comments

Hacker Makes $2M in Bug Bounties

savebreach.com
5 points·by hackerpain·vor 6 Jahren·0 comments

I was able to view anyone’s private email and birthday on Instagram

medium.com
7 points·by hackerpain·vor 6 Jahren·0 comments

Hackers last year conducted a 'dry run' of SolarWinds breach

news.yahoo.com
2 points·by hackerpain·vor 6 Jahren·1 comments

Czech Startup Founders Turn Billionaires Without VC Help

bloomberg.com
3 points·by hackerpain·vor 6 Jahren·2 comments

Ask HN: How ethical are pre-sales? Have you ever pre-sold a product?

3 points·by hackerpain·vor 6 Jahren·2 comments

Ask HN: How do buffer overflows still happen in spite of ASLR?

4 points·by hackerpain·vor 6 Jahren·3 comments

SolarWinds leaked FTP credentials through a public GitHub repo since 2018

savebreach.com
183 points·by hackerpain·vor 6 Jahren·92 comments

ShhGit – A tool to monitor sensitive secrets exposed via GitHub in real-time

shhgit.com
4 points·by hackerpain·vor 6 Jahren·0 comments

comments

hackerpain
·vor 5 Jahren·discuss
Using it since a decade, I faced bugs in the PGP encryption add on, they need to work on a lot of things to make it secure. This is my go-to Jabber client.
hackerpain
·vor 5 Jahren·discuss
How does this kind of vulnerability even remain, after code reviews?

Is it hard to spot?
hackerpain
·vor 6 Jahren·discuss
This bug was found by my friend. David has found many creative bugs and we worked on a project together :)

Must say a quick thinker, and he's just 17 or 18.
hackerpain
·vor 6 Jahren·discuss
I think ReCaptcha has been like this since at least last 6 years. Are they copying research?

https://www.youtube.com/watch?v=_RDXtILdkV0&persist_app=1&ap...
hackerpain
·vor 6 Jahren·discuss
Please ignore
hackerpain
·vor 6 Jahren·discuss
they haven't mentioned if an API (or, endpoint) is being DDoSed, just an incident update?
hackerpain
·vor 6 Jahren·discuss
Indeed.
hackerpain
·vor 6 Jahren·discuss
We spent like 12 years trying to create a medium sized business in electronics and we were at that time in an era when mobile phones were still getting popular. It was a nascent stage of refurb smartphone industry but even then it was a steep climb for us!

But there are companies operating in the same segment that started later, with VC and investor backing who rose quite fast.
hackerpain
·vor 6 Jahren·discuss
That's quite hard because getting established in one trade in the industry itself takes a lot of time and effort.
hackerpain
·vor 6 Jahren·discuss
Install code-server (https://github.com/cdr/code-server) on a server, and using it in your phone's browser to develop small web apps (works well in landscape mode with 6 -6.7 inch phones)

If you have a powerful processor and adequate RAM - you can do almost any thing that you do on desktop/pc
hackerpain
·vor 6 Jahren·discuss
I am sorry but that can ruin your career as its illegal. You can't sell or, trade vulnerabilities on live websites like Google as per the terms and conditions of the Google VRP (Responsible Disclosure policy) while it may seem unfair, its illegal to do so.
hackerpain
·vor 6 Jahren·discuss
docs.google.com didn't have X-Frame-Options: DENY nor a restrictive CSP so I think its a browser quirk (rather, a clever bypass) that works here. Also, the author had exploited a postMessage flaw which wasn't validating the host name properly that led to the cross-origin leak of screenshot data

Check this out https://youtu.be/KpkrTUHoWsQ (video about URL validation bypass and SOP)
hackerpain
·vor 6 Jahren·discuss
Google VRP team has a tradition to reward 4 figure and 5 figure amounts to match 1337 or, L33T (Leet or, Elite).

Example bounty amounts - $1337, $3133.7, $13337 and $31337
hackerpain
·vor 6 Jahren·discuss
this one technically requires some user interaction

Anyway, in the past I found a way to takeover an organization account in Google cloud acquisition and they rewarded me $100, saying their "Panel" decided that, Google's VRP panel sucks, so you're right about that.
hackerpain
·vor 6 Jahren·discuss
SolarWinds earlier said the backdoored binaries were put into their servers in March 2020, and hinted that the breach happened in 2020 but seems like the breach happened way before.

See related thread regarding the 2018 credentials leak - https://news.ycombinator.com/item?id=25442734
hackerpain
·vor 6 Jahren·discuss
Yes but how does that work? i have heard of unexploitable overflows how does that work?

and hey: Your username tricked me.
hackerpain
·vor 6 Jahren·discuss
It's not. They may have a private program, don't know.
hackerpain
·vor 6 Jahren·discuss
AWS now sends emails if you commit access keys, even better they are catching loads of other sensitive info having privileged access to the GitHub API. Cool and creepy at the same time, right?
hackerpain
·vor 6 Jahren·discuss
The researcher added there may be some certificates exposed in that repo which may have been used to sign the binaries. It's still a relevant update.

Especially the information that the repo was archived by Web Archive back in 2018. It's not easy to know the "who" but the how can be speculated and investigated.
hackerpain
·vor 6 Jahren·discuss
It's useful but yeah a ton of false positives :) Most common false positives appear to be the test values.