Az3mfilter Bypass by Url encode leads to RxssHello hackers, I’m Mahmoud Ibrahim, in this Write-up I’ll explain how I was able to steal users’ cookies via XSS.Jul 25Jul 25
Az3mBypassing Rate LimitWhere to look for Bugs - login - reset password - 2fA - Confirmation codes - Sign upMay 19, 2023May 19, 2023
Az3m[ ] sensetive Data Stored in Cookies check if anf pii or other sensitive infromation stored in…[ ] cookie length violation leads to Buffer Overflow : A cookie length which is longer than profiled length can indicate that a buffer…May 16, 2023May 16, 2023
Az3mautomation Rxss### method uniq https://github.com/yavolo/eventlistener-xss-recon ### first methodMay 15, 2023May 15, 2023
Az3mBug bountry tips from twitter[ ] Tip 1 Here’s my last finding (P1) 1- register account 2- intercept request 3- here’s the response in image so in “role” parameter we…May 3, 20231May 3, 20231
Az3mAccount Takeover checklist[ ] a lot of ideas in this article by omer hesham…May 2, 20233May 2, 20233
Az3mreset password attack checklist[ ] a lot of ideas in this article by omer heshamApr 29, 2023Apr 29, 2023