Bugbounty Tool { gron } by @TomNomNom Git Likes : 11.5k gron transforms JSON into discrete assignments to make it easier to grep for what you want and see the absolute ‘path’ to it.
https://github.com/tomnomnom/gron
写报告模板
https://github.com/fransr/template-generator
微软的一个SSRF(他们好像只收XSS)
https://www.mdsec.co.uk/2022/10/microsoft-office-online-server-remote-code-execution/
Google SSO misconfiguration leading to Account Takeover
https://0x4kd.medium.com/google-sso-misconfiguration-leading-to-account-takeover-cf9bcf63e76e
Google VRP — [Insecure Direct Object Reference] $3133.70
https://caesarevan23.medium.com/google-vrp-insecure-direct-object-reference-3133-70-a0e37023a4c7
原文始发于微信公众号(Bug Bounty Tips):Bug Bounty Tips(2022-10-24)