Welcome to nav1n.com
Nothing much to see here yet!, please come back again.
-NS
Connect me on twitter: @admin
A few days ago there was a healthy discussion on sticking to a single program or multiple targets -> , where @HusseiN98D mentioned abt FIS program on BC, I never heard about it. So, decided to spend sometime on that & yesterday this happened. #BugBounty
@nav1n0x @retkoussa 2 months of sticking to one of the most hardened public programs, hijacked top 1 and more than $500k in bounties counting collabs with @infosec_au & @rhyselsmore . Stick to 1 program and dig deeper. You will end up finding your rabbit hole.
SQL Injection on JSON body POST request. It took me some time, but finally found the right technique and injection point. ``sqlmap -r request.txt --level=5 --risk=3 --force-ssl --ignore-code=500 --dbs`` #SQLInjection #BugBounty
4