What is Detectify?
Detectify Labs
A security research blog
App Security
Writeups
How to
Crowdsource
How I found the Grafana zero-day Path Traversal exploit that gave me access to your logs
Detectify Crowdsource
featured
path traversal
zero day
Most read articles
How I made LastPass give me all your passwords
»
Hacking Slack using postMessage and WebSocket-reconnect to steal your precious token
»
Chrome Extensions – AKA Total Absence of Privacy
»
Hakluke: Creating the Perfect Bug Bounty Automation
automation
bug bounty
featured
Get research and tips from Detectify security experts and the Crowdsource hacker community
Subscribe to the Detectify Monthly Round-up
10 Types of Web Vulnerabilities that are Often Missed
bug bounty
Detectify Crowdsource
Farah Hawa
featured
hakluke
Hacking CloudKit – How I accidentally deleted your Apple Shortcuts
Cloudkit
Detectify Crowdsource
Frans Rosén
iOS
How blue teams can defend against Dependency Confusion and other novel supply chain attacks
dependency confusion
Detectify Crowdsource
supply chain attacks
How to set up Docker for Varnish HTTP/2 request smuggling
request smuggling
Hakluke’s huge list of resources for beginner hackers
How to Hack APIs in 2021
api security
Farah Hawa
hakluke
Undocumented authentication bypass issue in AEM Package Manager [Blog updated]
0day
Detectify Crowdsource
What is a Prototype Pollution vulnerability and how does page-fetch help?
client-side
page-fetch
prototype pollution
tools
« Previous
1
2
3
4
5
…
11
Next »
Start securing your web apps with tech powered by Detectify Crowdsource hackers
Start a 2-week free trial of Detectify and go hack yourself