🐝 Hive Five 120 - Don’t be the best. Be the only.

By securibee 🐝

Hi friends,

Greetings from the hive!

I hope you had a good weekend. Mine was pretty exhausting but fulfilling. The highlights were a bunch of great fights that took place this weekend, which I thoroughly enjoyed.

Newsletter-related, I want to incorporate more imagery and see how that feels. Speaking of which, here’s a screenshot of my daily not in Obsidian:

Let’s take this week by swarm!

🐝 The Bee’s Knees

1. Bug Bounty Basics: Cross-site Scripting. Is this the right bug to go for as a beginner? Or should it be left for advanced hackers? Katie breaks it down for you. more

2. Youssef Sammouda, the top-ranked Facebook bug bounty hunter, shares his experiences and approaches to bug hunting in this podcast. He discusses his preference for Facebook’s higher payouts and faster payment time. more

3. LangChain Prompt Injection Webinar where Prompt injection is explained by Simon Willison with video, slides, and a transcript. more | transcript

4. DevTernity 2019 talk by Scott Hanselman on Scaling Yourself. He covers various topics, from productivity to time management, taking care of oneself, and the importance of . He stresses that saying no is the ultimate productivity hack and that less is always more. more

5. Exploiting an Order of Operations Bug to Achieve RCE in Oracle Opera. If you work in the hospitality industry, it’s quite likely that you have seen or worked with Oracle Opera. This software is used by almost all of the largest hotels/resort chains around the world. more

️💪 Sponsor

Sponsor the Hive Five and reach a highly engaged community of engineers, security researchers, and ethical hackers who are at the forefront of the industry.

🏞️ Bee’s Eye View

🔥 Buzzworthy

✅ Changelog

1. Trickest 2.0 has a vibrant redesign and a lightning-fast workflow engine. more

2. jesseduffield/lazygit v0.38.2 contains a revamped commit message panel (@seand52), much better interactive rebase behaviour (@stefanhaller), and much less error-prone custom patch behaviour (also @stefanhaller). more

3. RetireJS/retire.js 4.2.1 is a scanner detecting the use of JavaScript libraries with known vulnerabilities. more

4. hisxo/ReconAIzer v0.7 is a Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more! more

5. Bugcrowd introduces Request a Response - A new standard for hacker and customer response time. more

📅 Events

1. Codingo et al started to get serious about BSidesGC planning. Expected in 2024, dates to follow soon as they’ve re-re-secured the venue. more

2. Compete in the 2023 Social Engineering Community Vishing Competition. Apply before June 1st. more

3. Bugcrowd and drunkrhin0’s first hacker AMA webinar with Nerdwell takes place on May 9th. more

🎉 Celebrate

1. Corben submitted his first critical Blockchain/DLT vulnerability on Immunefi. Let’s go! more

2. Cyber Detective reached 25k followers. Congrats! more

3. Peter made it to number 1 on the Synack Red Team 1 year leaderboard. Awesome! more

4. Alex Chapman welcomes Maddie into his family. Wonderful! more

5. Zseano helped deliver his second baby boy at home via the phone. Wow, amazing! more

💰 Career

1. 9 negotation mistakes to avoid. more

2. InfoSect (AUS) is hiring at all levels, from interns to seniors. more

3. Reddit is hiring a Lead Threat Detections Engineer. Think: Threat hunter, SIEM, SOAR, detection automation, playbooks, DFIR capabilities, etc. more

⚡️ Community

1. How Osirys got their first job as pentester a few months after their arrival in Australia shows the benefit of increasing your luck surface. more

2. Corben received the first boring mattress prototype. more

3. Farah had fun catching up with TESS. more

4. Check out Matt’s newsletter: VulnerableU. Mental health meets information security. more

5. d0nut’s blog post was featured on Hashnode. more

📰 Read

1. Cookie Bugs - Smuggling & Injection. Recently, Ankur investigated how browsers encode & send cookies, and how they are parsed by various web frameworks. more

2. Why is OAuth still hard in 2023? Robin lists several problem such as OAuth standard being too big and complex. more

3. Redash SAML Authentication Bypass. Redash is a popular data analysis and visualization tool. Calif recently reported a critical SAML authentication bypass vulnerability affecting its latest version (10.1.0). The vulnerability could be exploited by anyone to gain highest possible privileges on the system. more

4. A young hacker reminisces about the covid lockdown and their learning journey. more

5. A smorgasbord of a bug chain: postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, CSRF… All to achieve CSRF against an in-scope asset. more

📚 Resources

1. A collection of the best lightning talks (under 15 minutes) of all time. more

2. Hacker’s favorite ways to display and browse recon data: terminal, TUIs, Web UIs, and more. more

3. eugeneyan/open-llms is a list of open LLMs available for commercial use. more

4. Cloudflare Radar is a hub that showcases global Internet traffic, attack, and technology trends and insights. I had no idea this existed. Also, did you know 29% of the traffic is bots? more

5. CSS Injection via PostMessages to stealing Credit Card Info. more

🎥 Watch

1. How g0lden is learning Web3 — Smart Contracts, Security, and Bug Bounty. more

2. An interview with Eben Upton, founder and inventor of Raspberry Pi. He talks about the birthplace and home of the Raspberry Pi, how St John’s college played such an important role in the creation of the Raspberry Pi and why it all started. more

3. In this Directory Traversal guide you’ll learn the theory behind Directory Traversal vulnerabilities, how to find these types of vulnerabilities from both a white box and black box perspective, how to exploit them and how to prevent them. more

4. Windows Privilege Escalation for Beginners covers gaining a foothold, kernel exploits, impersonation attacks and more. more

5. Pentester Blueprint: Your road to success. Learn your path to success with the man who has wrestled a bear and lived to tell the tale! Phillip not only wrestled, was a bouncer, and a whole lot more, but also become a pentester! This is your Pentester Blueprint. // Books Mentioned // The Pentester Blueprint: The Ha more

6. Hack The Box - Flight walkthrough. more

🎵 Listen

1. Day[0] Bug Bounty Podcast 207 - Git Config Injection and a Sophos Pre-Auth RCE. more

2. In this first episode of Phillip Wylie’s new podcast he has a conversation with Cybersecurity Community OG and EH-net Founder Don Donzal. Don recently gave a talk about his almost two-year sabbatical where he learned lessons about work-life balance more

3. Critical Thinking - Bug Bounty Podcast Episode 17: LA Live Chat with Five Legendary Hackers. more

4. No Moat: Closed AI gets its Open Source wakeup call. Live reactions to the leaked Google Moat memo, with 2700 devs listening in, ft. Simon + Travis. Plus: the Google Brain Drain, and how Python gets 3500x faster with Mojo. more

5. Darknet Diaries EP 133: I’m the Real Connor. One day Connor Tumbleson got an email saying his identity has been stolen. And this was one of the strangest days he’s ever had. more

Get $100 to try DigitalOcean. The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

Subscribe to the Hive Five to read the rest.