Episode 12: JHaddix on Hacker->Hacker CISO, OG Hacking Techniques, and Crazy Reports
Critical Thinking - Bug Bounty Podcast
00:00
Web Testing
When Deanna Durbuster was doing web testing, she found a problem with her company's password manager. She tried to fix it by fuzzing every dynamic parameter in the code but couldn't get through. Eventually they were able to inject a hash into their database that allowed them to login from Google Drive and Gmail. The site is now running on an Apache webservers without any security issues.
Transcript
Play full episode
