Muhammad Khizer Javed
Subdomain Takeover via Unsecured S3 Bucket Connected to the Website

Subdomain Takeover via Unsecured S3 Bucket Connected to the Website

Muhammad Khizer Javed 6 years ago

Hey Guys,   So This Blog is Basically About an issue i found in a web where a missing file and an Unsecured S3 Bucket connected to that website gave…

Muhammad Khizer Javed

UBER Wildcard Subdomain Takeover | BugBounty POC

Muhammad Khizer Javed 7 years ago

Hi All, So Last month i decided to test Uber for Fun & Profit, So while scanning for subdomains to target i found a subdomain “design.uber.com” While navigating to the…

Muhammad Khizer Javed

What is Subdomain Hijack/Takeover Vulnerability? How to Identify? & Exploit It?

Muhammad Khizer Javed 7 years ago

The POST explains What is Subdomain Hijack/takeover Vulnerability, What are the Impacts of the Vulnerability & How can You prevent such attacks, In addition to this I Tried my best…

Muhammad Khizer Javed

Bugcrowd’s Domain & Subdomain Takeover vulnerability!

Muhammad Khizer Javed 7 years ago

Hey, I decided to Write about this Issue because I have seen some people are still confused about “Fastly error: unknown domain” Many Subdomains of BugBounty programs have This error…

Muhammad Khizer Javed

Subdomain Takeover Through Expired Cloudfront Distribution | live.lamborghini.com

Muhammad Khizer Javed 7 years ago

Hey Guys! So I have to accept that I’m a Huge Fan of Lamborghini Cars 👊 So I was just looking at their website lamborghini.com when I decided to scan…