PinnedFilipe AzevedoHow I find my first Stored XSSI started the recon on a target that for obvious reasons I can’t disclose. It was a service similar to Google, has an email service…May 13, 20211May 13, 20211
Filipe AzevedoAbusing JSON Web Token to steal accounts — 3000$Hello fellow hackers! 👋Jul 27, 2021Jul 27, 2021
Filipe AzevedoCSRF on Password ResetMy name is Filipe Azevedo and in this post, I’m going to talk about a CSRF that I recently found on a private program on HackerOne.Jun 18, 2021Jun 18, 2021