Sign up to save your podcasts
Or
Share Episode 11: CV$$, Web Cache Deception, and SSTI
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 11: CV$$, Web Cache Deception, and SSTI
Episode 11: In this episode of Critical Thinking - Bug Bounty Podcast we talk about CVSS (the good, the bad, and the ugly), Web Cache Deception (an underrated vuln class) and a sick SSTI Joel and Fisher found.
Follow us on twitter at: @ctbbpodcast
We're new to this podcasting thing, so feel free to send us any feedback here: [email protected]
Shoutout to YTCracker for the awesome intro music!
------ Links ------
Follow your hosts Rhynorater & Teknogeek on twitter:
https://twitter.com/0xteknogeek
https://twitter.com/rhynorater
MDSec Outlook Vuln:
https://twitter.com/MDSecLabs/status/1635791863478091778
Jub0bs User-Existance Oracle Tweet:
https://twitter.com/jub0bs/status/1633786349529513986
James Kettle's Tweet About BB ID Header Standardization:
https://twitter.com/albinowax/status/1635951506791755776
15K Snapchat Numeric IDOR:
https://hackerone.com/reports/1819832
Bug Bounty Reports Explained:
https://www.bugbountyexplained.com/
CVSS Calculator:
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator
Web Cache Deception Write-up:
https://www.blackhat.com/docs/us-17/wednesday/us-17-Gil-Web-Cache-Deception-Attack.pdf
View all episodes
By Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
5
5353 ratings
Episode 11: In this episode of Critical Thinking - Bug Bounty Podcast we talk about CVSS (the good, the bad, and the ugly), Web Cache Deception (an underrated vuln class) and a sick SSTI Joel and Fisher found.
Follow us on twitter at: @ctbbpodcast
We're new to this podcasting thing, so feel free to send us any feedback here: [email protected]
Shoutout to YTCracker for the awesome intro music!
------ Links ------
Follow your hosts Rhynorater & Teknogeek on twitter:
https://twitter.com/0xteknogeek
https://twitter.com/rhynorater
MDSec Outlook Vuln:
https://twitter.com/MDSecLabs/status/1635791863478091778
Jub0bs User-Existance Oracle Tweet:
https://twitter.com/jub0bs/status/1633786349529513986
James Kettle's Tweet About BB ID Header Standardization:
https://twitter.com/albinowax/status/1635951506791755776
15K Snapchat Numeric IDOR:
https://hackerone.com/reports/1819832
Bug Bounty Reports Explained:
https://www.bugbountyexplained.com/
CVSS Calculator:
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator
Web Cache Deception Write-up:
https://www.blackhat.com/docs/us-17/wednesday/us-17-Gil-Web-Cache-Deception-Attack.pdf
More shows like Critical Thinking - Bug Bounty Podcast
View all
Hacked
185 Listeners
The Changelog: Software Development, Open Source
288 Listeners
Security Now (Audio)
2,005 Listeners
Risky Business
372 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
652 Listeners
CyberWire Daily
1,026 Listeners
Smashing Security
318 Listeners
Click Here
418 Listeners
Darknet Diaries
8,069 Listeners
Tech Brew Ride Home
966 Listeners
Cybersecurity Today
177 Listeners
Hacking Humans
315 Listeners
![Day[0] by dayzerosec](https://podcast-api-images.s3.amazonaws.com/corona/show/870239/logo_300x300.jpeg){kind=logo}
Day[0]
10 Listeners
Cybersecurity Headlines
140 Listeners
Bug Bounty Reports Discussed
4 Listeners