Critical Thinking - Bug Bounty Podcast

Episode 70: NahamCon and CSP Bypasses Everywhere

May 9, 2024

Cybersecurity researcher Ben Sadeghipour discusses NahamCon news, LHEs, CI/CD, and drops cool CSP Bypasses. Topics include WordPress hacking, bug bounty rewards, sponsorships, maximizing bonuses, anticipation for NahamCon, Deppie tool, CSP bypass techniques, and bypassing Google CSP.

43:08

Creator website

Episode guests

Ben Sadeghipour

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

CSP bypasses on trusted domains can be exploited using JSONP callbacks, enabling manipulation of JavaScript actions.

Innovative CSP bypass techniques on WordPress involve leveraging limited callback capabilities to trigger specific JavaScript functions.

Deep dives

Google Maps.JSONP CSP Bypass

Researchers discovered a CSP bypass on maps.googleapis.com using JSONP callbacks. By inserting a full function call into the callback via jasonp, they could trigger JavaScript actions within the trusted domain. This loophole can bypass standard security measures by leveraging trusted domains' functionality for nefarious actions.

Introduction

3min

Exploring Bug Bounty Programs and Hacking Workshops

12min

WordPress Hacking, Automation, and Sponsorship Workshop Discussion

2min

Collaborating with Sponsor for Bug Bounty Program Bonuses and Engagement

2min

Maximizing Bonuses in Hacking Programs

6min

Excitement for NahamCon and Discussion on Deppie Tool

4min

Uncovering Ignored Directories and Expanding Search Horizons

5min

Exploring Content Security Policy Bypass Techniques

10min

Episode 70: In this episode of Critical Thinking - Bug Bounty Podcast we’re once again joined by Ben Sadeghipour to talk about some Nahamcon news, as well as discuss a couple other LHE’s taking place. Then they cover CI/CD and drop some cool CSP Bypasses.

We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

https://twitter.com/0xteknogeek

https://twitter.com/rhynorater

------ Ways to Support CTBBPodcast ------

Hop on the CTBB Discord at https://ctbb.show/discord!

We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.

Today's Sponsor - Project Discovery: https://nux.gg/podcast

Today’s Guest: https://twitter.com/NahamSec

https://www.nahamcon.com/

Resources:

Depi

https://www.landh.tech/depi

Youtube CSP:

https://www.youtube.com/oembed?callback=alert()

Maps CSP:

https://maps.googleapis.com/maps/api/js?callback=alert()-print

Google APIs CSP

https://www.googleapis.com/customsearch/v1?callback=alert(1)