Critical Thinking - Bug Bounty Podcast

Episode 72: Research TLDRs & Smuggling Payloads in Well Known Data Types

May 23, 2024

Discussing PDF.JS XSS and NextJS SSRF, improving bug bounty statistics, concealing data in IPv6 addresses, navigating RFC compliance, business logic vulnerabilities, bug hunting strategies, JavaScript in software development, and transitioning to a new tool efficiently.

52:49

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Research highlights various vulnerabilities like PDF.JS XSS and NextJS SSRF.

Bounty transparency helps in better communication and collaboration with hackers.

Smuggling payloads in phone numbers and IPv6 research can lead to significant security risks.

Deep dives

GitHub Enterprise Bug Fix by Riddle

Riddle developed a feature in Kaido that updates headers with a click, streamlining session maintenance during testing.

Intro

2min

Bug Bounty Research Conference and PDF .js XSS Vulnerability

11min

Improving Representation in Bug Bounty Statistics

14min

Navigating RFC Compliance and Developer Solutions

2min

Business Logic Vulnerabilities and Patch Analysis

16min

Debating Bug Hunting Strategies and Time Investment in Applications

3min

Exploring the Benefits of JavaScript in Software Development and Plugin Management

2min

Enhancing User Experience and Transitioning to a New Tool

3min

Episode 72: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel discuss some hot research from the past couple months. This includes ways to smuggle payloads in phone numbers and IPv6 Addresses, the NextJS SSRF, the PDF.JS PoC drop, and a GitHub Enterprise Indirect Method Information bug. Also, we have an attack vector featured from Monke!

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

------ Ways to Support CTBBPodcast ------

Hop on the CTBB Discord at https://ctbb.show/discord!

We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.

Today's Sponsor - Project Discovery: https://nux.gg/podcast

Resources:

PDF.JS Bypass to XSS

https://github.com/advisories/GHSA-wgrm-67xf-hhpq

https://codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in-pdf-js/

PDFium

NextJS SSRF by AssetNote

Better Bounty Transparency for hackers

Slonser IPV6 Research

Smuggling payloads in phone numbers

Automatic Plugin SQLi

DomPurify Bypass