Nessus is neverendingly annoying. Takes way too long to install and “initialize”. Can’t open anything in a new tab. Can’t easily copy large lists of IPs (e.g. a vulnerability with a bunch o...

If you’re reading this, you’ve probably used Burp, and you’re probably aware of Burp Collaborator, the out of band detection feature. Basically, it gives you a (sub)domain name and tells you if the...

I have a bit of a love-hate relationship with Self-XSS. I find them somewhat regularly, and while I do think programs should pay a bounty for them (the lowest they offer), I’m often a bit frustrate...

After I created TemplateSearch.io, I was testing it out by searching for random things and I came across several templates for YesWiki. So I Googled it to see exactly what it is because I’ve never ...

This is the first part in my new series “Funny Bug Bounty Reports”. These are not judged on their merits, technical abilities, or anything other than if they make me laugh. Today, I bring you the d...

I was tired of manually searching for the right Nuclei templates to use. The one existing site that lets you search them — while interestingly designed and certainly more stylish than anything I’d ...

I went to install Tailscale on a Wifi Pineapple, and the normal pipe to bash (lol) script didn’t work. I had to do it manually like this. YMMV - attempt at your own risk. I’m unsure how this affect...

I received an email saying I’m a top 25 researcher in the California VDP from 2024. Not too bad from the thousands of reports they get, I’m sure.

I recently ran across an application that allowed access to a ClickHouse DB for my user. The access was allowed, so that isn’t an issue. However, when we as pentesters or bug bounty hunters get acc...

The other day I received an email saying I was eligible for some swag for getting my 25th valid P1 submission on BugCrowd. I don’t do too much BB hunting these days, and also not too much on BugCro...