Bug Bytes #121 – Free Burp Collaborator alternative, Hacking Chrome extensions & $28k Facebook Oauth account takeover

By Anna Hammond

May 5, 2021

Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The first series is curated by Mariem, better known as PentesterLand. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and resources.

CLICK HERE TO SUBSCRIBE

This issue covers the week from April 26 to May 3.

Intigriti News

Congratulations to @p4fg, @0xkasper and @sumgr0 for joining Intigriti’s 1337 gang!

Hacksplained joins Intigriti to further enable community of 35.000 ethical hackers

Our favorite 5 hacking items

1. Tool of the week

Interactsh, Intro & Nuclei + Interactsh Integration for Automating OOB Testing

It can be a pain to perform Out-of-Band testing without Burp Collaborator. If you can’t or don’t want to pay for it, there is now a free open source alternative thanks to @pdiscoveryio.

Interactsh provides a client/server infrastructure, with the possiblity to use a self-hosted server for privacy. It has a beautiful Web interface and can be integrated with Nuclei. Such amazing work by the Project Discovery team!

2. Writeups of the week

DEFCON 29 CTF Qualifier: 3FACTOOORX Write-up
Facebook account takeover due to unsafe redirects after the OAuth flow (Facebook, $28,800)

The first writeup is @bbuerhaus‘s walthrough of the DEFCON 29 CTF Qualifier 3factooorx challenge. It involves analyzing a Chrome browser extension and navigating through obfuscated JavaScript with Chrome Dev Tools.
If you’re learning about this topic, this is a helpful resource especially if combined with the “Tutorial of the week” below.

The second writeup is about open redirect in a Facebook app’s OAuth flow that lead to account takeover. A pretty impressive finding and informative writeup by @Samm0uda!

3. Video of the week

Live Recon and Distributed Recon Automation Using Axiom with @pry0cc

Curious to know how Axiom’s author uses it to hunt for bugs on real targets? This is the video to watch!
In this unique type of hacker interviews by @NahamSec, @pry0cc show how he performs distributed recon with Axiom and tools like meg, nmap, httpx, ffuf, etc.

4. Tutorial of the week

Testing Extensions in Chromium Browsers – Nordpass

This is the ultimate guide to get into testing Chromium browser extensions. @CryptoGangsta shares an incredibly detailed tutorial with the Nordpass Chrome extension as an example.
Topics taught include how to debug extensions, reverse engineer obfuscated JavaScript, perform JavaScript dynamic analysis with Browser DevTools, decrypt AES-GCM encypted messages, and log/instrument extensions.

5. Non technical items of the week

@TinkerSec’s alarming burnout story
Redefining What it Means to be a Hacker with Eric Head aka todayisnew

@TinkerSec‘s burnout story is a cautionary tale for all of us hackers. It’s important to read and keep in mind for those times when our bodies are telling us to stop working/hacking and we want to keep pushing.

Another very interesting read is an interview with @codecancare. He is a successful full-time bug hunter who is known for his kindness, for automating everything and advocating for empathy and mindfulness.
It’s cool to hear from him about these topics, including a very practical mindfulness technique to which he attributes his success.

Other amazing things we stumbled upon this week

Other amazing things we stumbled upon this week

Videos

Podcasts

Conferences

Tutorials

Medium to advanced

Beginners corner

Writeups

Challenge writeups

Responsible(ish) disclosure writeups

Bug bounty writeups

See more writeups on The list of bug bounty writeups.

Tools

Tips & Tweets

Misc. pentest & bug bounty resources

Challenges

Articles

Bug bounty & Pentest news

Non technical

Community pick of the week

Thank you @Th4nu_0x0 for participating in our “draw our logo” competition! Enjoy your swag!

Do you also have bug bounty wins, swag and joys to share with other Bug Bytes readers? Tag us on social media, we love to hear from you!

You may also like