Critical Thinking - Bug Bounty Podcast

Episode 47: CSP Research, Iframe Hopping, and Client-side Shenanigans

Nov 30, 2023

The podcast discusses the struggles of bug bounty hunting, including feeling disconnected after live hacking events and the frustration of not finding bugs. They highlight the significance of perseverance and getting into a flow state. They explore topics such as client-side paths, manipulating webpack map files, and exploiting XSS vulnerabilities in iframed domains. They also discuss the benefits of Google's extension for hacking and techniques for bypassing Content Security Policy.

01:31:52

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Taking detailed notes during hacking sessions can greatly enhance productivity and organization.

Identifying client-side paths in JavaScript files can provide valuable scope and functionality insights for gaining access and triggering functions.

Thank You Next is a tool that simplifies recon for Next.js applications by extracting and printing all available routes from the build manifest.

Automation tools like JS Weasel and Bevix enhance bug hunting capabilities by streamlining monitoring, scanning, and request customization.

Deep dives

The Power of Taking Notes

Taking detailed notes during hacking sessions can greatly enhance productivity and organization. Through tools like Postman or Paw, hackers can structure their requests, set up variables, and even automate tasks. These tools also come in handy when handling complex HTTP requests or dealing with crypto-related challenges. Additionally, integrating note-taking and scope control features in tools like Kaido or Burp can further streamline the hacking process.

Introduction

2min

The Struggles of Bug Bounty Hunting

12min

Complexities of Authentication Systems and the Launch of Discord Community

15min

Tool for extracting Next.js routes and the Importance of Client-side Paths

3min

Manipulating Webpack Map Files and Lazy Loaded JavaScript

3min

Frustrations with Scope Control in Kaido

18min

Exploiting XSS Vulnerabilities in iframed Domains

11min

Exploring Protobuf and the Benefits of Google's Extension for Hacking

2min

Lowering the Bar for Hacking

15min

10.

Exploiting the Same-Origin Policy and Bypassing CSP

12min

Episode 47: In this episode of Critical Thinking - Bug Bounty Podcast, the holidays are fast approaching, and Justin and Joel discuss some of the struggles of getting back into the hacking groove during and after breaks. We also celebrate the newly launched Critical Thinking Discord Community before diving into Iframe Sandwhiches, JS Hoisting, CSP Bypasses, and a host of new tools, techniques, and tangents.

We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

https://twitter.com/0xteknogeek

https://twitter.com/rhynorater

------ Ways to Support CTBBPodcast ------

Hop on the CTBB Discord at https://ctbb.show/discord!

ThankUNext

jswzl

Rapid API

SSRF Utility tool by Bebiks