Sign up to save your podcasts
Or
Share Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
View all episodes
By Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
5
5353 ratings
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
More shows like Critical Thinking - Bug Bounty Podcast
View all
Hacked
184 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
369 Listeners
Risky Business
374 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
637 Listeners
CyberWire Daily
1,016 Listeners
Smashing Security
322 Listeners
Click Here
416 Listeners
Darknet Diaries
8,000 Listeners
Cybersecurity Today
175 Listeners
Hacking Humans
314 Listeners
CISO Series Podcast
188 Listeners
Defense in Depth
73 Listeners
Bug Bounty Reports Discussed
4 Listeners
Risky Bulletin
44 Listeners
Hacker And The Fed
168 Listeners