logo
episode-header-image
Nov 6
58m 48s

Episode 147: Stupid Simple Hacking Workf...

Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
About this episode

Episode 147: In this episode of Critical Thinking - Bug Bounty Podcast we're talking tips and tricks that help us in hacking that we really should’ve learned sooner.

Follow us on twitter at: https://x.com/ctbbpodcast

Got any ideas and suggestions? Feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

====== Links ======

Follow your hosts Rhynorater, rez0 and gr3pme on X:

https://x.com/Rhynorater

https://x.com/rez0__

https://x.com/gr3pme

====== Ways to Support CTBBPodcast ======

Hop on the CTBB Discord at https://ctbb.show/discord!

We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.

You can also find some hacker swag at https://ctbb.show/merch!

Today's Sponsor: ThreatLocker. Check out ThreatLocker Network Control

https://www.criticalthinkingpodcast.io/tl-nc

====== This Week in Bug Bounty ======

Netscaler's new program

https://hackerone.com/netscaler_public_program?type=team

The ultimate Bug Bounty guide to HTTP request smuggling vulnerabilities

https://www.yeswehack.com/learn-bug-bounty/http-request-smuggling-guide-vulnerabilities

Hackers now have 2 Request-a-Response

https://docs.bugcrowd.com/changelog/researchers/request-a-response-researcher/

Evan Connelly Spotlight

https://www.bugcrowd.com/blog/hacker-spotlight-evan-connelly/

Epic Games Jobs Openings

Jobs.ctbb.show

====== Timestamps ======

(00:00:00) Introduction

(00:09:23) Command Palette, Auto-decoding, & Evenbetter

(00:17:28) Chrome Devtools Edit as html & Raycast

(00:33:23) ffuf -request flag

(00:41:33) JXScout

(00:48:55) Conditional Breakpoints in Devtools & Lightning round tips

Up next
Nov 20
Episode 149: DEFCON Debrief: AI Vulns, Unicode Weirdness, and Wild Vulnerability Chains
<p>Episode 149: In this episode of Critical Thinking - Bug Bounty Podcast The DEFCON videos are up, and Justin and Joseph talk through some of their favorites.</p><p>Follow us on <a target="_blank" rel="noopener noreferrer nofollow" href="https://x.com/ctbbpodcast">X</a></p><p>Go ... Show More
1h 2m
Nov 13
Episode 148: MCP Hacking Guide
Episode 148: In this episode of Critical Thinking - Bug Bounty Podcast Justin gives us a crash course on Model Context Protocol.Follow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel free to send us any feedback here: info@criticalthinkingpodcast.io ... Show More
32m 26s
Oct 30
Episode 146: Hacking Horror Stories
Episode 146: In this episode of Critical Thinking - Bug Bounty Podcast Justin, Joseph, and Brandyn all sit down to celebrate the spooky season by swapping their scariest bug stories. From frightening fails and firings to hacks with chilling and critical consequences. Grab your fl ... Show More
1h 50m
Recommended Episodes
Mar 2016
Episode 214: 214: Atrophic Cohost
<p>Sean, Kyle, and a chorus of small frogs discuss the Game Developers Conference, eating alone, atrophic organs, Slack vs Basecamp, the cost of abstractions, and tips for adding new team members.</p> <p><a href="http://braintreepayments.com/railspodcast">Braintree</a>: An easy w ... Show More
1h 23m
Sep 14
455: The Chicken Killer | The Official Podcast
Get 25% off HelixSleep sitewide: go to https://www.helixsleep.com/official Get 25% off your Fitbod subscription or try the app for free: go to https://www.fitbod.me/official Get additional episodes and bonus content with early access (try now with 7 DAYS FREE): go to https://www. ... Show More
1h 41m
Aug 13
How to Prompt GPT-5
Nearly a week into the GPT-5 era, users are still divided on its quality—but one thing’s clear: it’s more steerable than any previous model, and prompts make or break results. In this episode, we cut through the debate and share 11 practical prompting techniques you can use right ... Show More
29m 42s
Sep 29
#521: Red Teaming LLMs and GenAI with PyRIT
English is now an API. Our apps read untrusted text; they follow instructions hidden in plain sight, and sometimes they turn that text into action. If you connect a model to tools or let it read documents from the wild, you have created a brand new attack surface. In this episode ... Show More
1h 2m
Feb 2025
Freaky Friday: Episode 150
My Dog Found a Dead Body; Getting Away Twice; Precognitive Phenomena? And the Work Conference from Hell; Tales from the Night Shift; Knock, Knock, Knock; and The Time my Dog Caught a Fugitive. Get your fan code today, and grab your tickets starting Feb. 7 to join us for CrimeWave ... Show More
1h 8m
Jan 2025
10 Tools To Make 2025 Your Best Year Yet: Habits & Mindset Shifts Ft. Michael & Lauryn Bosstick
#792: New Year, New Goals – Make 2025 Your Best Year Yet! Join Michael & Lauryn Bosstick as they sit down to discuss their goals & intentions for the New Year, sharing actionable habits & meaningful changes to inspire your own journey. They cover everything from setting personal ... Show More
48m 25s
Feb 2025
96. Love is Blind S8 Eps. 1-6 Recap: Most Boring Season Yet?!
00:00 - LiB S8 Eps 1-6 Initial Reactions 09:10 - Early Season 8 Favorites 49:15 - Competing for Screen Time on LiB 55:39 - Episode 6 Cliffhanger Theories This episode is sponsored by: - Bumble: Wanna date on your terms? Date your way, on Bumble.  - Allara Health: Allara Health: G ... Show More
1h 4m
Listen to millions of songs and podcasts on Anghami