logo
episode-header-image
Jul 2024
1h 6m

Episode 78: Less Writing, More Hacking -...

Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
About this episode

Episode 78: In this episode of Critical Thinking - Bug Bounty Podcast we’re talking about writing reports. We share some tips that we’ve learned, and discuss ways that AI can (and can’t) help with that process. We also talk about the benefit of using tools like Fabric, Loom, and ShareX.

Follow us on twitter at: @ctbbpodcast

We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

------ Ways to Support CTBBPodcast ------

Hop on the CTBB Discord at https://ctbb.show/discord!

We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.

Today’s Sponsor - ThreatLocker

Resources:

XSS WAF Bypass by multi-char HTML entities

Shazzer

Next.js and cache poisoning

Nagli's Nuclei Template

hey why can't you fix this one bug

Justin's reporting templating software

Fabric

BB Report Formatter

2to3 Automated Python Converter

ShareX

Skitch

Timestamps:

(00:00:00) Introduction

(00:04:00) XSS WAF Bypass by Multi-char HTML Entities

(00:11:59) Next.js and Cache Poisoning

(00:18:03) Nagli's Nuclei Template and Sean Yeoh's Blog

(00:27:34) Report Writing and AI

(00:50:02) Reporting tips

Up next
Nov 20
Episode 149: DEFCON Debrief: AI Vulns, Unicode Weirdness, and Wild Vulnerability Chains
<p>Episode 149: In this episode of Critical Thinking - Bug Bounty Podcast The DEFCON videos are up, and Justin and Joseph talk through some of their favorites.</p><p>Follow us on <a target="_blank" rel="noopener noreferrer nofollow" href="https://x.com/ctbbpodcast">X</a></p><p>Go ... Show More
1h 2m
Nov 13
Episode 148: MCP Hacking Guide
Episode 148: In this episode of Critical Thinking - Bug Bounty Podcast Justin gives us a crash course on Model Context Protocol.Follow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel free to send us any feedback here: info@criticalthinkingpodcast.io ... Show More
32m 26s
Nov 6
Episode 147: Stupid Simple Hacking Workflow Tips
Episode 147: In this episode of Critical Thinking - Bug Bounty Podcast we're talking tips and tricks that help us in hacking that we really should’ve learned sooner.Follow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel free to send us any feedback ... Show More
58m 48s
Recommended Episodes
Feb 2024
[313] Train-Themed Idioms: A Train of Thought | Off The Rails and More
In this episode, we're delving into more train-related idioms that native English speakers love to use. Whether you're at work, chilling with friends, or just hanging out, these expressions add some fun flair to your conversations. Join me as we break down phrases like "a train o ... Show More
13m 4s
Feb 2024
730: Own Your Own PaaS
Scott and Wes talk about the benefits of owning your own PaaS (platform as a service), the main alternatives in the space, and ways to make passion projects more financially viable. Show Notes 00:00 Welcome to Syntax! 01:12 Brought to you by Sentry.io. 01:56 What is a PaaS ... Show More
57m 57s
Nov 2023
Sports Podcasting On A National Level
“Think of our NFL network, it’s 38 podcasts. To source 38 podcasts, you don’t want eight different publishers and 38 different onboarding calls and invoices - it can be a nightmare. So for us, we like to just make it as easy for an advertiser as possible to activate with those mi ... Show More
44m 24s
Feb 2024
TIP609: Fooled by Randomness by Nassim Taleb
On today’s episode, Clay reviews Nassim Taleb’s book – Fooled by Randomness. Nassim Taleb is a Lebanon-born American mathematician and statistician whose work concerns problems of randomness, probability, and uncertainty. He’s very well known for his popular books, including The ... Show More
1 h
Jan 2024
Introducing On This Day in Working Class History: A new daily podcast from WCH
Introducing a brand-new daily podcast from the team at WCH. On This Day in Working Class History will be a brief reminder each morning of our collective struggles for a better world which have taken place on this date in history. Launching on 1 February on a trial basis, each epi ... Show More
2m 32s
Jan 2024
How to build a role-playing video game in 24 hours
<p>Now you know: The human body can serve as a resonance chamber for <a href="https://physics.stackexchange.com/questions/101913/why-does-a-remote-car-key-work-when-held-to-your-head-body" target="_blank">remote car keys</a>, effectively extending their range.</p><p>A hackathon t ... Show More
14m 14s
Nov 2023
Milli Vanilli Unsynced w/Luke & Patrick - Just Shoot It 399
<p>Director Luke Korem is back on the pod! Matt &amp; Oren chat with him and editor Patrick Berry about their new Paramount+ documentary, Milli Vanilli! </p><br><p>Matt's Endorsement: Cuisinart Digital Gooseneck Kettle</p><p>Oren's Endorsement: Polycam's Room Mode</p><p>Luke's En ... Show More
1h 5m
Feb 2024
Microsoft's New Direction with Copilot, Data Management & Retention, Tech Skills Shortage
<p style="font-weight: 400;">The Transformation Ground Control podcast covers a number of topics important to digital and business transformation. This episode covers the following topics and interviews:</p> <ol><li>Microsoft’s New Direction with Copilot, Q&amp;A (Darian Chwialko ... Show More
1h 54m
Listen to millions of songs and podcasts on Anghami