Day 2 Bug Bounty — 60 days 60bugs challenge

-

 


Hi there, it’s cyberbeat again! Today I woke up at 6, a lil late than yesterday, and it was almost 8 by the time I sat down to hunt, I was occupied with writing yesterday’s medium articles and publishing it. So let’s get into the main show.

Yesterday I figured out an information disclosure bug where my report was marked as P5 😢 so I wanted to escalate it. I started from there, trying various ways to bypass the authentication, but with no luck. I spent the whole afternoon finding a way to bypass access control but I wasn’t able to figure out a way.

Around 3pm, I gave up and tried to look for other domains on that program while just visiting random subdomains. Suddenly I had a random idea — what if I am able to smuggle request from that admin server to here? Sounds like crazy, but I tried to do the same. I tried with a login page but was not able to perform a successful attack. I spend the whole evening on that, smuggling one request under another and taking a note of the ressponse.

One thing thatI noticed, which was something new for me was Error Code 411, this is a response when the server needs content length. And this is the point where I thought of doing request smuggling. Below is the reference that I took to detect potential vulnerability.

Credit: Jarno Timmermans

For those who doesn't know about request smuggling, it is a way to manipulate the HTTP headers to smuggle other requests. There are two types of security control in headers— one through content length, where the server just looks at content length while the other looks at Transfer encoding. If the front end server understands Transfer Encoding and the backend server understands Content Length then we would be able to use TE.CL; or vice versa. You could gain in depth understanding from Portswigger academy (HERE).

Around 9.30, I submitted the report hoping that at least my report will get accepted 🤞 if not bounty.

Today I spent almost 12 hours in bug bounty just to find a bug. It was a bit hard for me to get to the flow since I started late. Here is how my Toggl timer dashboard…

Comments

Post a Comment

Popular posts from this blog

Diamond Hack Website FF Latest December 19 2023 100% Working

-
Image
D iamond Hack FFMax Diamond Hack FFMax APK  for Android Free In English V  1.0 4.3 (126 ) APK Status Free Download for Android Free diamond tool for Free Fire Diamond Hack FFMax  is a free-to-use  utility  designed to help players better manage and grow their diamonds, a valuable in-game resource in the  battle royale  game,  Garena Free Fire . This third-party app makes quick  price checks and conversions  for you, checking different  locations  on your behalf. Aside from this economic tool, this app also offers a couple of game  optimization  options to improve your gameplay experience. Unlike other literal diamond hacking apps, Diamond Hack FFMax only helps players manage diamonds and improve game performance. It’s like a cross between  Love FF Diamond  and  GFX Tool - Free Fire Booster . Manage diamonds and optimize the game Despite the seeming misnomer, Diamond Hack FFMax  doesn’t hack into the game  in any form. Instead, it serves as a third-party platform that lets you  view dia
Read more

Java Runtime Setup for win10

-
JAVA RUNTIME ENVIRONMENT Java Runtime Environment  (JRE) allows you to play online games,  chat with people around the world , calculate your mortgage interest, and view images in 3D, just to name a few. It's also integral to the intranet applications and other e-business solutions that are the foundation of corporate computing. It provides the libraries, the Java Virtual Machine, and other components to run applets and applications written in the Java programming language. In addition, two key deployment technologies are part of the JRE: Java Plug-in, which  Enables Applets to Run in Popular Browsers ; and Web Start, which deploys standalone applications over a network. Many cross platform applications also require Java to operate properly. Itis a programming language and computing platform first released by Sun Microsystems in 1995. There are lots of applications and websites that will not work unless you have Java installed, and more are created every day. The program is f
Read more

DOWNLOAD DROIDJACK 4.4 FULL VERSION – REMOTE ADMINISTRATION TOOLS

-
Image
DOWNLOAD DROIDJACK 4.4 FULL VERSION – REMOTE ADMINISTRATION TOOLS There is nothing that you can do with a PC, you can’t do using an Android phone. Since the power in the hand has grown so much, a control over that power is also needed. DroidJack is what you need for that. DroidJack gives you the power to establish control over your beloveds’ Android devices with an easy to use GUI and all the features you need to monitor them. Build a custom APK or bind the payload to an already existing APK such as a game or social media app. Download droidjack 4.4 full version free of cost. FEATURES: Bind your server APK with any other Game or App. Explore Files with full access. Read/Write Messages. Make a call, record a call and browse call logs. Read and write contact list. Capture photos and videos. Listen live conversation through mic, record mic sound live. Check browser history. Get GPS Location. Check installed apps. Get phone’s information (IMEI, WIFI MAC, PHONE CARRIER). Fully Stealth. DOWN
Read more