Credential stuffing, password spraying/guessing are more dangerous than anyone thinks. It leads to breaches, unauthorize
In this episode we are going to find a sensitive data leak with unique tool I made - LeakLooker X. I added new features
Script parses Pastebin email:password dumps and collects information about each email address. It supports Google, Truma
I would like to show how misconfigured rsync protocol can lead to data breach or compromise company and how to secure yo
Originally published on October 29th, 2017TL;DR With help of AWS3dump and my poor coding skills I found database backups
When I’m looking for new target on Hackerone I’m always paying attention to numbers of resolved reports and wonder if hi