ZonduhackeroneThe Secrets Behind EC2 TakeoversHave you heard of what a subdomain takeover is? Do you know the impact it has? Well, if you haven’t, I will shortly summarize it for you.5 min read·May 12, 2023--1--1
ZonduhackeroneWhat VPS to choose?There are tons of cloud providers that offer different types of servers with a lot of different options. I will talk about the ones I…4 min read·Apr 20, 2022----
ZonduhackeroneSSRF to fetch AWS credentials with full access to various servicesThis is a post about how I found a simple yet really critical vulnerability in a bug bounty program. It was the most critical bug I have…4 min read·Feb 27, 2021----
ZonduhackeroneBug Bounty — Beginner’s guideThere are lots of guides on how to start into Bug Bounty Hunting but I will share my personal experience of getting into bug bounty…6 min read·Jun 22, 2020--3--3
ZonduhackeroneIDOR in session cookie leading to Mass Account TakeoverIf you are familiar with what IDOR is, you will know that it can be anywhere from url, request body, GET or POST requests and yes, in…3 min read·May 29, 2020--1--1