The 5 Hacking NewsLetter 15

Hey hackers! These are our latest favorite resources related to pentest & bug bounty.

This issue covers the week from 03 to 10 of August.

Our favorite 5 hacking items

1. Writeup of the week

How I gained commit access to Homebrew in 30 minutes by Eric Holmes (@vesirin)

Eric was able to make an unauthorized commit to Homebrew’s GitHub repositories. It took 4 steps and less than 30 minutes:

• He used Gitrob to automate the organization’s Github recon
• He looked at previously disclosed issues on https://hackerone.com/Homebrew and found a Jenkins instance (intentionally) publicly exposed
• Git authenticated push meant that credentials were stored somewhere…
• The “Environment Variables” page exposed a valid GitHub API token

The 5 Hacking NewsLetter 14

Hey hackers! Once again, we scoured the Web to bring you the latest best resources related to pentest & bug bounty.

This issue covers the week from 27 of July to 03 of August.

Our favorite 5 hacking items

1. Tip of the week

Finding domains belonging to a specific target by @edoverflow

One of the most important steps during recon is finding domains that belong to your target.

Many talks and tweets tackle the question of subdomains enumeration, but there is a lot less information out there about finding domains. So it’s nice to read these practical tips from a confirmed bug hunter.

Conference notes: The Bug Hunters Methodology v3(ish) (LevelUp 0x02 / 2018)

Hi, these are the notes I took while watching “The Bug Hunters Methodology v3(ish)” talk given by Jason Haddix on LevelUp 0x02 / 2018.

Links

• Video
• Slides

About

This talk is about Jason Haddix’s bug hunting methodology. It is an upgrade of:

• The Bug Hunter’s Methodology AKA How to Shot Web (Defcon 23) (Slides)
• The Bug Hunters Methodology v2.1 (Slides)

The 5 Hacking NewsLetter 13

Hey hackers! These are our latest favorite resources related to pentest & bug bounty.

This issue exceptionally covers two weeks, from 13 to 27 of July.

Our favorite 5 hacking items

1. Non technical item of the week

Under the Hoodie Videos: True Stories from Rapid7 Pen Testers
Under the Hoodie - Lessons from a Season of Penetration Testing

I absolutely loved watching these videos, especially “The Bank Job”!

Having only conducted technical “classic” penetration testing and never social engineering or red team engagements, I find these tales mind-blowing. It’s like watching a good action movie made by real hackers.

Conference notes: Automation for Bug Hunters (Bug Bounty Talks)

Hi, these are the notes I took while watching the “Automation for Bug Hunters - Never send a human to do a machine’s job” talk given by Mohammed Diaa (@mhmdiaa) for Bug Bounty Talks.

Links

• Video
• Slides

About

This talk is about automation for bug hunters.