Security writeups from researchers for researchers

We scan, we hack, we write about it. New interesting vulnerabilities, attack techniques, tools and bug bounty tips.

Log in Subscribe

Home
About

Next.js 14 from a hacker's perspective

Next.js 14 from a hacker's perspective

Dawid Moczadło

30 Oct 2023 · 4 min read

Escalating debug mode in Django to RCE, SSRF, SQLi

Escalating debug mode in Django to RCE, SSRF, SQLi

Dawid Moczadło

24 Oct 2023 · 3 min read

Vidoc Secures Funding from bValue!

Vidoc Secures Funding from bValue!

Klaudia

27 Sep 2023 · 2 min read

Vidoc - Notifications and Collab Feature Release

Vidoc - Notifications and Collab Feature Release

Klaudia

6 Jun 2023 · 2 min read

Ultimate 401 and 403 bypass methods

Ultimate 401 and 403 bypass methods

Klaudia

9 May 2023 · 7 min read

How we made $120k bug bounty in a year with good automation

How we made $120k bug bounty in a year with good automation

Klaudia

6 Feb 2023 · 7 min read

Introducing the New and Improved Web-Based Security Tool

Introducing the New and Improved Web-Based Security Tool

Klaudia

1 Feb 2023 · 5 min read

Why good Recon is hard, and how we make it easy

Why good Recon is hard, and how we make it easy

Klaudia

3 Nov 2022 · 3 min read

Vidoc - a hacking platform

Vidoc - a hacking platform

Klaudia

24 Sep 2022 · 3 min read

Hacking Swagger-UI - from XSS to account takeovers

Hacking Swagger-UI - from XSS to account takeovers

Dawid Moczadło

16 May 2022 · 10 min read

© 2023 Vidoc Security Lab. All rights reserved.