Critical Thinking - Bug Bounty Podcast Episode 143: New Cohost + Client-Side Gadgets, LHE Meta — Instant Global Admin in Entra!
Oct 9, 2025
A new co-host joins the discussion as they dive into the excitement of live hacking events and the strategic dynamics of report writing. Recent news highlights YesWeHack's major EU contract win. The hosts tackle tackling deep pentesting scopes and the advantages of non-chained gadgets. They explore the intricacies of exploiting backend implementations and share clever techniques like client-side attribute smuggling. Insights on the Entra actor token flaw reveal critical vulnerabilities, while practical discussion on tools like Flareprox enhances the technical insights.
AI Snips
Chapters
Books
Transcript
Episode notes
New Cohost Announcement
- Justin announces Brandon (Rhynorater) as the new co-host after years running hacker notes and live hacking success.
- He encourages listeners to DM Brandon and welcomes him into the spotlight.
Live Hacking Prep And Collaboration
- Rhynorater describes prepping before an LHE by mapping scope and threat models to his strengths.
- He doubled down on favored target flavors and collaborated with others to surface higher-impact bugs.
Leverage Gadgets To Guide Hunting
- Use early findings and information-leaking gadgets to inform and prioritize further attacks across the app.
- Align your scope to your strengths and double down on apps where you have an advantage.
