- MonkeHacks
- Posts
- MonkeHacks #23
MonkeHacks #23
Denmark, DomLogger++ and Bugcrowd
MonkeHacks #23
This will be a small post this week as I’ve been super busy. On Wednesday, I visited Copenhagen with one of my best friends from Ireland. I had a great time and took some time off from hacking and such. On Sunday, I hung out with Hakupiku and his friend 0xlimE. We did some light hacking and had a nice lunch in the Meatpacking District in Copenhagen.
I flew back to Scotland on Sunday, and my Irish friend is staying with me until Thursday. We went bouldering this morning.
I needed this summer holiday very much, and it was a very freeing feeling to be able to take this holiday without thinking about work and such. The ultimate luxury is freedom.
Kongens Nytorv square in Copenhagen. Blessed with good weather.
100-Hour Challenge Updates
Here are this week’s statistics:
⌛️ Hours This Week | 0 |
⏳️ Hours Left | 11 |
🗞️ Total Reports (All-Time) | 3 |
✅ Total Triages (All-Time) | 3 |
✨ New Triages (This Week) | 0 |
💸 Bounties | $25533 |
I barely hacked this week as it was my week off, so there is nothing new here, of course.
Weekly Ideas / Notes
I focused on DomLogger++, an excellent but complex extension designed to assist client-side hacking. It’s very powerful. I’m still working my way through Kevin Mizu’s masterclass video in the Critical Thinking Discord server.
I… took a break! For once, no hacking at all for 4-5 days. I definitely needed it, especially as I begin to buckle up for a prolonged period of intense hacking.
I spent some time automating a part of a very complex POC I submitted to Bugcrowd recently. I never really report to Bugcrowd, but unfortunately I’ve had a terrible experience with their triage team. They ignored most of the report, which I spent several hours writing, and didn’t read my comments. I’ve had to deal with lazy triagers before, but this was another level. Two weeks since submission, there’s been no progress towards triaging this critical.
Why must I spend hours writing a good report if it’s just going to be ignored in the end anyway?
Why have blockers if my comments, which resolve the issues they encounter, will be ignored? I even left a troubleshooting section, which… they ignored.
All of this has left me unimpressed. This may be an outlier incident, but if it’s the norm, then Bugcrowd has some serious catching-up to do to justify their recent funding round.
Next week I’ll try to write a bit more! I aim to get back to my hacking groove this week. I have several leads across a few different programs that I need to explore.
Resources
Encoding Differentials: Why Charset Matters: An awesome new XSS technique using differences in how browsers parse different encodings. While it looks insane, the actual number of vulnerable targets is much smaller than you would think. The technique is nonetheless insanely cool.
Unveiling TE.0 HTTP Request Smuggling: Discovering a Critical Vulnerability in Thousands of Google Cloud Websites: Amazing research from sw33tLie, bsyop and _medusa1_, unveiling a new subtype of HTTP request smuggling.