Sign up to save your podcasts
Or
Share Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
View all episodes
By Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
5
5353 ratings
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
More shows like Critical Thinking - Bug Bounty Podcast
View all
Risky Business
364 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
640 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
369 Listeners
Hacked
181 Listeners
CyberWire Daily
1,017 Listeners
Smashing Security
316 Listeners
Click Here
408 Listeners
Darknet Diaries
7,952 Listeners
Cybersecurity Today
164 Listeners
CISO Series Podcast
189 Listeners
Hacking Humans
312 Listeners
Defense in Depth
76 Listeners
Bug Bounty Reports Discussed
4 Listeners
Risky Bulletin
43 Listeners
Hacker And The Fed
168 Listeners