• Hive Five
  • Posts
  • 🐝 Hive Five #24 – Heroes, good vibes, and cache money

🐝 Hive Five #24 – Heroes, good vibes, and cache money

Hi friends,

Greetings from the hive!

I hope you had a great weekend and an awesome Father's Day. I spent mine reading and watching NahamSec's Sunday recon stream with Daniel Miessler. I highly recommend this episode about recon, mental health, personal growth, and stoicism.

Let's take this week by swarm!

🐝 The Bee's Knees

  1. Quick Analysis for the SSID Format String Bug: Days ago a twitter post revealed a bug in iOS Wi-Fi service: @vm_call: After joining their personal WiFi with the SSID β€œ%p%s%s%s%s%n”, their iPhone permanently disabled it’s WiFi functionality.

  2. Security Research Device Cohort – 2021: The Security Research Device Cohort (SRD Cohort) operates a Private Slack Channel, Build Infrastructure and provides Code Examples, Cryptex Examples, Loaner Gear and more to increase engagement with the SRD.

  3. codingo_ Shares His Recon Approach Using SecurityTrails, FDNS, Whoxy and more!: Every hacker has a different approach when it comes down to Recon. Check out Codingo's recon methodology using tools like SecurityTrails, FDNS, Whoxy, and more!

  4. Live GitLab Ask a Hacker with Bug Bounty Hunter (vakzz) William Bowling (Public): William is a full time Software Developer and long-time CTF player, based out of Australia, who recently started trying his hand at Bug Bounties in his free time. When not hacking, he likes to go walking with the family and playing little known sports such as underwater hockey.

  5. iOS App Testing Through Burp on Corellium: In recent weeks defparam had an itch to take another look at mobile testing. The last time they looked at mobile testing most of their environment revolved around applications developed for Android.

πŸ™πŸ» Enjoy This Newsletter?

  • Get $100 to try DigitalOcean. The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

πŸ”₯ Buzzworthy

βœ… Changelog

  1. Dalfox 2.4.0: New payload mode, remote assets, headless browser, bug fixes, and more.

  2. Release InjuredAndroid 1.0.11: Added flag eighteen! This flag is all about File Providers. The intended solution is meant to be difficult, you'll need to leverage another Android application to access internal directories.

  3. Findomain - Introducing Smart Nuclei Alerts (SNA): Implemented a feature that will allow users of the Special and Corporative plans of our platform to receive the vulnerabilities found by Nuclei before anyone else, the feature will be called Smart Nuclei Alerts (SNA).

πŸ“… Events

  1. Okta (virtual) Bug Bash: 2021!: Ever wanted to participate in a Bug Bash, but never got an invite or didn't know how to get on the list? Now's your chance!

  2. Limited edition - 250 pairs STΓ–K glasses: Release date - 29th of June Price - $60/pair International shipping.

  3. Nicolas GrΓ©goire Burp training: Update on my trainings for Q3/Q4 2021. Out of the 12 seats available for each session, here's what is left: - September French UTC+2: 1 seat - September English UTC+2: 6 seats - October English UTC-4: 5 seats - December English UTC+1: 3 seats.

  4. Josh Christ Memorial Fund: Josh Christ passed away on Monday, June 14 2021 due to complications of Leukemia. Josh was one of the most genuine people anyone could hope to meet. He was very down-to-earth and was very honest with himself and others.

πŸŽ‰ Celebrate

  1. ho β€’ no β€’ ki: reported their first subdomain takeover since starting bug bounty hunting ~3 years ago. Let's go!

  2. Ben Sadeghipour: will be the keynote speaker for this year’s Virtual Recon Village at DEF CON. Can't wait!

  3. Tanner: getting that 'cache money' (credits d0nut). Congrats!

  4. GodFather Orwa: reached their Bugcrowd bug bounty 2021 goals. Aamazing!

πŸ’° Jobs

πŸ“° Articles

  1. Unauthenticated Gitlab SSRF: Purpose of the CI Lint API is to validate CI/CD YAML configuration for Gitlab.

  2. CVE-2021-31585: Accellion kiteworks - Web administrator to remote code execution: ZX Security performed security testing of Accellion’s kiteworks application.

  3. CCC H1-CTF WRITE-UP: This write-up is co-written by Dexter0us and mass0ma.

  4. Infosec Bugbounty AMA with Mikey.

  5. How I Found A Vulnerability To Hack iCloud Accounts and How Apple Reacted To It: This article is about how they found a vulnerability on Apple forgot password endpoint that allowed them to takeover an iCloud account.

πŸ“š Resources

  1. Can I Takeover DNS?: a list of DNS providers and how to claim (sub)domains via missing hosted zones.

  2. LayersOfAwesome: A cold storage Ethereum wallet with a focus on security created using the web3j library.

  3. Blind XSS : setup your self-hosted XSS Hunter with the PwnMachine: Blind XSS is a common vulnerability and can have a significant impact if it reaches internal environments (e.g. backend, internal support tickets).

  4. ItIsMeCall911/Awesome-Telegram-OSINT.

  5. Nightmare: an intro to binary exploitation / reverse engineering course based around ctf challenges.

πŸŽ₯ Videos

  1. Binary Exploitation Deep Dive: Return to LIBC (with Matt).

  2. null Ahmedabad Meet 20 June 2021 Monthly Meet: Our most frequent event is the monthly meets where we meet, discuss, talk about security and CTFs(hands-on challenges).

  3. $50,000 0-day RCE on Apple bug bounty program.

  4. Hacker Heroes #1 - samengmg interview: a sit down with Samuel Eng (@samengmg) and they talk about his hacking career.

  5. Bug Bounties Using only Burp & Browser - 30 DAY RESULTS (UNEXPECTED CLICKBAIT): RECON != EVERYTHING.

🎡 Audio

Get $100 to try DigitalOcean - The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

Subscribe to the Hive Five to read the rest.

Become a paying subscriber of the Hive Five to get access to this post and other subscriber-only content.

Already a paying subscriber? Sign In

A subscription gets you:
Join a private Discord COMMUNITY: Engage in chat, uplift one another, grow together, and explore shared interests.
Access to COMPLETE HIVE ARCHIVE: Unlock a treasure trove of tools, resources, videos, and audio, catering to all your needs.
EXCLUSIVE & BONUS content: Delve into hundreds of curated links that didn't make it into the newsletter.
Experience continuously added NEW BENEFITS.

Subscribe to keep reading

This content is free, but you must be subscribed to Hive Five to continue reading.

Already a subscriber?Sign In.Not now