Logo YesWeHack
Blog
LoginContact Us

Community

  1. Blog
  2. Community
Bug Bounty hacker 4mb4 says “my favourite bug was an IDOR at a $1 billion company” in this interview with YesWeHack

‘I have the patience to spend long hours hacking through the night’: g4mb4 on his Bug Bounty career so far

Read More ->
Ethical hacker leorac says “Bug Bounty is a rollercoaster of emotions” in this interview with YesWeHack

‘The most challenging part is the psychological one’ – leorac on the ups and downs of Bug Bounty hunting

Read More ->
Parsing logic workflow

Chunked-body parsing flaws, making self-XSS great again, using HTTP redirect loops to achieve non-blind SSRFs – ethical hacker news roundup

Read More ->
YesWeHack interview with ethical hacker gregxsunday aka Grzegorz Niedziela about Bug Bounty, in which he says “I’m paying a lot of attention to SSO or SAML flaws”

‘Feeling close to a critical vulnerability is incredibly addictive’ – YouTuber gregxsunday on the joys of Bug Bounty

Read More ->
L’Oréal Live Bug Bounty at LeHACK 2024

Flashback to the L’Oréal Live Bug Bounty: Watch last year’s highlights as anticipation builds for leHACK 2025

Read More ->
A double-clickjacking attack, exploit or vulnerability

Ultimate double-clickjacking exploit, novel HTTP/2 request tunnelling techniques, when encryption makes matters worse – ethical hacker news roundup

Read More ->
YesWeHack interview with ethical hacker gregxsunday aka Grzegorz Niedziela about Bug Bounty, in which he says “I’m paying a lot of attention to SSO or SAML flaws”

‘Feeling close to a critical vulnerability is incredibly addictive’ – YouTuber gregxsunday on the joys of Bug Bounty

Signature spoofing OpenPGP

Critical signature-spoofing vulnerability in OpenPGP.js hits the headlines

Read More ->
GitHub screenshot

‘Airborne’ AirPlay attacks, netting $64k from deleted files, triaging AI slop – ethical hacker news roundup

Read More ->
Vulnerabilities affecting middleware

Middleware mayhem, Zoolander banter PoC, Malta to pardon hackers over ‘unfair’ charges – ethical hacker news roundup

Read More ->
Signature spoofing OpenPGP

Critical signature-spoofing vulnerability in OpenPGP.js hits the headlines

YouTube

YouTube email leak exploit, Great ‘Wallbleed’ of China, Burp’s overlooked ‘best feature’ – ethical hacker news roundup

Read More ->
Trophy for the top web hacking techniques of 2024

Top web hacking techniques of 2024, McDelivery hijack, 4D SOTA jailbreak – ethical hacker news roundup

Read More ->
pwnii (aka pwnwithlove), the star of this YesWeHack hunter interview, is pictured and quoted saying: “Don’t forget that a duplicate bug is a valid bug”

‘There are a lot of vulnerabilities on public programs’: pwnii’s Bug Bounty journey so far

Read More ->
YouTube

YouTube email leak exploit, Great ‘Wallbleed’ of China, Burp’s overlooked ‘best feature’ – ethical hacker news roundup

1/5
12345
Next

Footer

Logo YesWeHack
Logo YesWeHack

Products

  • Bug Bounty
  • Vulnerability Disclosure Policy
  • Pentest Management
  • Attack Surface Management
  • Live Hacking Events

Researchers

  • Start Hunting
  • Public Programs
  • Tools
  • Ranking
  • Dojo

Resources

  • Blog
  • Case Studies
  • Videos
  • Help Center
  • API
  • Github
  • Newsletter

Company

  • About YesWeHack
  • Trust & Security
  • Career
  • Press
  • Events
  • Contact

Follow us

Linkedin White
Twitter Logo
Youtube White
GitHub, YesWeHack

©2025 YESWEHACK

  • Legal Notices
  • Privacy Policy
  • Cookies Policy
  • Change Cookie Preferences