HackerTrans
TopNewTrendsCommentsPastAskShowJobs

hackerpain

no profile record

Submissions

Q&A with one of the Richest Bug Bounty hunters who made over $2M in bounties

savebreach.com
1 points·by hackerpain·5 lat temu·0 comments

The embedded YouTube player told me what you were watching

bugs.xdavidhu.me
260 points·by hackerpain·5 lat temu·104 comments

Linux Mint fixes screensaver bypass discovered by two kids

zdnet.com
16 points·by hackerpain·5 lat temu·2 comments

Finding 0day to Hack Apple

github.com
5 points·by hackerpain·6 lat temu·0 comments

Breaking the Google Audio ReCAPTCHA with Google's Own Speech to Text API

incolumitas.com
2 points·by hackerpain·6 lat temu·1 comments

Testing a Proof of Concept of security bug

1 points·by hackerpain·6 lat temu·0 comments

Ticketmaster Coughs Up $10M Fine After Hacking Rival Business

threatpost.com
3 points·by hackerpain·6 lat temu·0 comments

Is Slack Going through a DDoS attack?

4 points·by hackerpain·6 lat temu·0 comments

Patch. Bypass. Repeat: Story of a Facebook Page Admin Disclosure Bug Worth $5000

savebreach.com
1 points·by hackerpain·6 lat temu·0 comments

Ask HN: How did you turn your failed business model into a successful venture?

1 points·by hackerpain·6 lat temu·4 comments

Stealing private documents through a bug in Google Docs

savebreach.com
319 points·by hackerpain·6 lat temu·138 comments

Silicon Valley's hunger problems grow during a time of record profits

nbcnews.com
1 points·by hackerpain·6 lat temu·0 comments

Hacker Makes $2M in Bug Bounties

savebreach.com
5 points·by hackerpain·6 lat temu·0 comments

I was able to view anyone’s private email and birthday on Instagram

medium.com
7 points·by hackerpain·6 lat temu·0 comments

Hackers last year conducted a 'dry run' of SolarWinds breach

news.yahoo.com
2 points·by hackerpain·6 lat temu·1 comments

Czech Startup Founders Turn Billionaires Without VC Help

bloomberg.com
3 points·by hackerpain·6 lat temu·2 comments

Ask HN: How ethical are pre-sales? Have you ever pre-sold a product?

3 points·by hackerpain·6 lat temu·2 comments

Ask HN: How do buffer overflows still happen in spite of ASLR?

4 points·by hackerpain·6 lat temu·3 comments

SolarWinds leaked FTP credentials through a public GitHub repo since 2018

savebreach.com
183 points·by hackerpain·6 lat temu·92 comments

ShhGit – A tool to monitor sensitive secrets exposed via GitHub in real-time

shhgit.com
4 points·by hackerpain·6 lat temu·0 comments

comments

hackerpain
·5 lat temu·discuss
Using it since a decade, I faced bugs in the PGP encryption add on, they need to work on a lot of things to make it secure. This is my go-to Jabber client.
hackerpain
·5 lat temu·discuss
How does this kind of vulnerability even remain, after code reviews?

Is it hard to spot?
hackerpain
·6 lat temu·discuss
This bug was found by my friend. David has found many creative bugs and we worked on a project together :)

Must say a quick thinker, and he's just 17 or 18.
hackerpain
·6 lat temu·discuss
I think ReCaptcha has been like this since at least last 6 years. Are they copying research?

https://www.youtube.com/watch?v=_RDXtILdkV0&persist_app=1&ap...
hackerpain
·6 lat temu·discuss
Please ignore
hackerpain
·6 lat temu·discuss
they haven't mentioned if an API (or, endpoint) is being DDoSed, just an incident update?
hackerpain
·6 lat temu·discuss
Indeed.
hackerpain
·6 lat temu·discuss
We spent like 12 years trying to create a medium sized business in electronics and we were at that time in an era when mobile phones were still getting popular. It was a nascent stage of refurb smartphone industry but even then it was a steep climb for us!

But there are companies operating in the same segment that started later, with VC and investor backing who rose quite fast.
hackerpain
·6 lat temu·discuss
That's quite hard because getting established in one trade in the industry itself takes a lot of time and effort.
hackerpain
·6 lat temu·discuss
Install code-server (https://github.com/cdr/code-server) on a server, and using it in your phone's browser to develop small web apps (works well in landscape mode with 6 -6.7 inch phones)

If you have a powerful processor and adequate RAM - you can do almost any thing that you do on desktop/pc
hackerpain
·6 lat temu·discuss
I am sorry but that can ruin your career as its illegal. You can't sell or, trade vulnerabilities on live websites like Google as per the terms and conditions of the Google VRP (Responsible Disclosure policy) while it may seem unfair, its illegal to do so.
hackerpain
·6 lat temu·discuss
docs.google.com didn't have X-Frame-Options: DENY nor a restrictive CSP so I think its a browser quirk (rather, a clever bypass) that works here. Also, the author had exploited a postMessage flaw which wasn't validating the host name properly that led to the cross-origin leak of screenshot data

Check this out https://youtu.be/KpkrTUHoWsQ (video about URL validation bypass and SOP)
hackerpain
·6 lat temu·discuss
Google VRP team has a tradition to reward 4 figure and 5 figure amounts to match 1337 or, L33T (Leet or, Elite).

Example bounty amounts - $1337, $3133.7, $13337 and $31337
hackerpain
·6 lat temu·discuss
this one technically requires some user interaction

Anyway, in the past I found a way to takeover an organization account in Google cloud acquisition and they rewarded me $100, saying their "Panel" decided that, Google's VRP panel sucks, so you're right about that.
hackerpain
·6 lat temu·discuss
SolarWinds earlier said the backdoored binaries were put into their servers in March 2020, and hinted that the breach happened in 2020 but seems like the breach happened way before.

See related thread regarding the 2018 credentials leak - https://news.ycombinator.com/item?id=25442734
hackerpain
·6 lat temu·discuss
Yes but how does that work? i have heard of unexploitable overflows how does that work?

and hey: Your username tricked me.
hackerpain
·6 lat temu·discuss
It's not. They may have a private program, don't know.
hackerpain
·6 lat temu·discuss
AWS now sends emails if you commit access keys, even better they are catching loads of other sensitive info having privileged access to the GitHub API. Cool and creepy at the same time, right?
hackerpain
·6 lat temu·discuss
The researcher added there may be some certificates exposed in that repo which may have been used to sign the binaries. It's still a relevant update.

Especially the information that the repo was archived by Web Archive back in 2018. It's not easy to know the "who" but the how can be speculated and investigated.
hackerpain
·6 lat temu·discuss
It's useful but yeah a ton of false positives :) Most common false positives appear to be the test values.