Sign up to save your podcasts
Or
Share Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
View all episodes
By Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
5
5151 ratings
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
More shows like Critical Thinking - Bug Bounty Podcast
View all
Risky Business
361 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
628 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
367 Listeners
Hacked
180 Listeners
CyberWire Daily
1,007 Listeners
Smashing Security
311 Listeners
Click Here
406 Listeners
Malicious Life
927 Listeners
Darknet Diaries
7,864 Listeners
Cybersecurity Today
169 Listeners
Hacking Humans
314 Listeners
Defense in Depth
74 Listeners
Cyber Security Headlines
128 Listeners
Bug Bounty Reports Discussed
4 Listeners
Hacker And The Fed
158 Listeners