logo
episode-header-image
Feb 2024
32m 34s

Episode 57: Technical breakdown from Mia...

Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
About this episode

Episode 57: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel are live from Miami, and recap their experience and share takeaways from the live hacking event. They highlight the importance of paying attention to client-side routing and the growing bug class of client-side path traversal. They also discuss the challenges of knowing when to cut your losses and the value of tracking time and setting goals. 

Follow us on twitter at: @ctbbpodcast

We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

https://twitter.com/0xteknogeek

https://twitter.com/rhynorater

------ Ways to Support CTBBPodcast ------

Sign up for Caido using the referral code CTBBPODCAST for a 10% discount. 

Hop on the CTBB Discord at https://ctbb.show/discord!

We also do Discord subs at $25, $10, $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc. 

Timestamps:

(00:00:00) Introduction

(00:03:50) Miami LHE Recap and Takeaways

(00:05:57) Keeping time and cutting losses.

(00:19:07) Roles and Goals

(00:23:33) OAuth

(00:28:52) HTML5 image to img Tip

Up next
Jul 3
Episode 129: Is this how Bug Bounty Ends?
Episode 129: In this episode of Critical Thinking - Bug Bounty Podcast we chat about the future of hack bots and human-AI collaboration, the challenges posed by tokenization, and the need for cybersecurity professionals to adapt to the evolving landscape of hacking in the age of ... Show More
36m 14s
Jun 26
Episode 128: New Research in Blind SSRF and Self-XSS, and How to Architect Source-code Review AI Bots
Episode 128: In this episode of Critical Thinking - Bug Bounty Podcast we talking Blind SSRF and Self-XSS, as well as Reversing massive minified JS with AI and a wild Google Logo Ligature BugFollow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel fre ... Show More
58m 6s
Jun 19
Episode 127: Drama, PDF as JS Chaos, Bounty Profile Apps, And More
Episode 127: In this episode of Critical Thinking - Bug Bounty Podcast we address some recent bug bounty controversy before jumping into a slew of news itemsFollow us on XShoutout to YTCracker for the awesome intro music!Today's Sponsor: Adobe====== This Week In Bug Bounty ====== ... Show More
1h 7m
Recommended Episodes
Jun 2024
20 Years, 1000 Episodes: The Man Behind PodQuiz
We have another bonus episode! In this one, Andrew sits down and talks with James Carter from PodQuiz who began his popular trivia podcast back in 2005. He just published his 1000th episode so Andrew took the opportunity to pick his brain on how he comes up with his questions and ... Show More
59m 30s
Jun 2024
How to Scale your Startup with Growth Levers: Matt Lerner
Sponsored by Brilliant - visit https://brilliant.org/DeepDive/ and the first 200 of you will get 20% off Brilliant's annual premium subscription. I’ve built a brand new community for like-minded people called Productivity Lab. We’ll have online classes, workshops, and coaching to ... Show More
2h 32m
Jun 2024
250. Warm Up Your Program Launch with A PAID Private Podcast (This One Converted 30% of Listeners To Generate $108K)
Want to weed out the freebie seekers in your next launch? Try this pre-launch strategy on for size. Kelsey McCormick, founder of Coming Up Roses, knows that launch strategies are ever evolving, so she’s tested MULTIPLE top-of-funnel approaches ranging from challenges to workshops ... Show More
44m 54s
May 2024
#133 PodcastAI: Josh Gets Displaced
We thought it would take years before AI could replace a podcast host. That is, until founder Edward Brawer slid into Josh’s DMs to pitch his startup, PodcastAI. Edward thinks he can make podcast producers 10x more productive and he already signed two big name podcasters. Now can ... Show More
50m 57s
Jun 2024
The Wandering DP Podcast: Episode #439 – The Rambling Man #2
I had originally intended this to be a Q+A Episode but like always it devolved into a rant about finding employment in this business, how to lower your chances (or raise them) of getting fired on set, and a whole slew of other topics. I will eventually get to the Q+A stuff but it ... Show More
57m 46s
Mar 2024
AI vs software devs
Daniel and Chris are out this week, so we’re bringing you conversations all about AI’s complicated relationship to software developers from other Changelog pods: JS Party, Go Time & The Changelog.Join the discussionChangelog++ members save 2 minutes on this episode because they m ... Show More
57 m
Jun 2024
#294 - MakeMyMask : 3,5M€ du jour au lendemain... mais après 4 années de galères
Laurent Kretz rencontre Julie Pernet, la fondatrice de MakeMyMask, un laboratoire dermopilaire qui développe des masques pour les cheveux. Julie nous partage son parcours de solopreneure et les défis qu’elle a dû relever pour faire décoller sa marque. 4 ans après sa création, des ... Show More
1h 9m
May 2024
How to overcome limiting beliefs (unlock your next level)
This podcast episode is for you if you are experiencing self sabotage, limiting beliefs or feel like you are blocking yourself - maybe you have big goals / dreams, but everytime you get close to executing or make some moves, you feel some old thought patterns, behaviours and ways ... Show More
48m 42s
Feb 2024
The Suffolk Strangler / Steve Wright - Part 2
PLEASE LISTEN TO ‘SEASON 8 - EPISODE 44’ FOR PART ONE OF THIS TWO-PART CASE. The bodies of five vulnerable women who went missing from the streets of Ipswich were found over a ten-day period. Suffolk Police launched the most extensive investigation in the force's history, and wit ... Show More
1 h
Mar 2024
Linux Kernel Scheduler Developer | David Vernet
The linux kernel is something we all use but have you ever thought about what goes into it, well today we've got David Vernet on the show who has spent quite a bit of time focusing on one aspect, that being the scheduler. =========Guest Links========== Twitch: https://www.twi ... Show More
1h 55m
Listen to millions of songs and podcasts on Anghami