Sign up to save your podcasts
Or
Share Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 118: Hacking Happy Hour: 0days on Tap and SQLi Shots
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
View all episodes
By Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
5
5353 ratings
Episode 118: In this episode of Critical Thinking - Bug Bounty Podcast we cover a host of news, including clientside tidbits, “Credentialless” iframes, prototype pollution, and what constitutes a polyglot in llms.txt.
Follow us on X
Shoutout to YTCracker for the awesome intro music!
====== Links ======
Follow Rhynorater and Rez0 on X
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!
You can also find some hacker swag!
====== Resources ======
p4fg passed 1 Million!
/reports/:id.json - $25K Crit
Hacking Crypto pt1
The art of payload obfuscation
Analyzing the Next.js Middleware Bypass
Nahamsec's Merch store
llms.txt polyglot prompt injection
React Router and the Remix’ed path
Pre-Authentication SQL Injection in Halo ITSM
Pwning Millions of Smart Weighing Machines
MCP Server Oauth
Cline
“Credentialless” iframes
Tiny XSS Payloads
Types of Pollution
====== Timestamps ======
(00:00:00) Introduction
(00:05:56) Next.js Middleware bypass & Polyglots in llms.txt
(00:16:35) CPDoS on React Router
(00:24:26) Loose Types Sink Ships & Pwning Smart Scales
(00:32:30) MCP Server Oauth & Cline
(00:39:40) Clientside Tidbits & Prototype Pollutions
More shows like Critical Thinking - Bug Bounty Podcast
View all
Hacked
190 Listeners
Hanselminutes with Scott Hanselman
383 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
373 Listeners
Risky Business
374 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
655 Listeners
CyberWire Daily
1,023 Listeners
Smashing Security
318 Listeners
Click Here
418 Listeners
Darknet Diaries
8,041 Listeners
Cybersecurity Today
181 Listeners
Hacking Humans
315 Listeners
CISO Series Podcast
189 Listeners
Defense in Depth
74 Listeners
Risky Bulletin
44 Listeners
Hacker And The Fed
169 Listeners