PinnedFilipe AzevedoHow I find my first Stored XSSI started the recon on a target that for obvious reasons I can’t disclose. It was a service similar to Google, has an email service…2 min read·May 13, 2021--1--1
Filipe AzevedoAbusing JSON Web Token to steal accounts — 3000$Hello fellow hackers! 👋2 min read·Jul 27, 2021----
Filipe AzevedoCSRF on Password ResetMy name is Filipe Azevedo and in this post, I’m going to talk about a CSRF that I recently found on a private program on HackerOne.2 min read·Jun 18, 2021----