Frans Rosen and Justin sit down to discuss and drop gold on X-correlation injection, with impacts and POCs ranging from JSON injection to RCE.
The team are back with a whole bunch of tips and tricks off of the back of the research dropped at Defcon.
In this HackerNotess, Justin and Roni Carta (@0xLupin) discuss their MVH win at the recent Google LHE, and drop some valuable takeaways from the event.
MatanBer and Justin dropped a tonne of tips and tricks on client-side hacking and using DevTools effectively, as well as some recent POCs to escalate self XSS.
We're back with a monster episode featuring Sina Kheirkhah aka SinSinology, covering Pwn2Own strategies, .NET source code analysis, RCE research, IoT debugging, and tips for excelling in security research.
We're back with some weekly security including RCE via browser extensions, CSPT and a metric ton of CSS injection tips, tricks and techniques for you.
How to go Full-Time Bug Bounty: The Blueprint
Weekly security research, WAF bypasses and better reporting. Check it out in this HackerNotes post.
We've got fresh writeups including some MongoDB injections, ORMs, and exploits in Kakao and iOS before pivoting into staying motivated and avoiding burnout while hunting.
HackerNotes is back with some tasty exploit writeups, HackerOne AWC news and some match & replace tips for your next bug hunt.
Check out all things supply chain and dependency confusion below.
Content from NahamCon, WAF Bypasses, iFrame research and more!
![[HackerNotes Ep.86] The X-Correlation between Frans & RCE - Research Drop](https://media.beehiiv.com/cdn-cgi/image/format=auto,width=800,height=421,fit=scale-down,onerror=redirect/uploads/publication/logo/f3cc9f6e-341e-452a-9b50-a244bcc4cf92/Critical_Thinking_Podcast_Cover_Square.jpg){kind=logo}
