Hacking the Dutch government
A few months ago I found out that the dutch government is hosting a bug-bounty program that covers a lot of assets from their infrastructures....
Dynamic caching: What could go wrong?
Tl;DrThe Engintron plugin for CPanel presents a default configuration which could expose applications to account takeover and / or sensitive data exposure due to cache...
Intigriti XSS Challenge – December 2021
The approach to this challenge was completely different from the past two months, as the vulnerable component was on the backend, forcing us to approach...
Intigriti November XSS Challenge
The bug bounty program Intigriti hosts an XSS challenge every month. This time, the challenge was about bypassing CSP by reloading a VueJS instance, getting...