Skip to content

Sam Curry

Web Application Security Researcher
  • Home
  • Blog
  • Contact

Month: August 2017

How I gained access to chef, docker, AWS, and MongoDB instances in a single request

August 2, 2017 samwcyo 21d Comments

The following article details the successful exploitation of a server sided request forgery vulnerability in Yahoo’s small business platform. If…

Continue Reading →

Recent Posts

  • Leaked Secrets and Unlimited Miles: Hacking the Largest Airline and Hotel Rewards Platform
  • Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More
  • Exploiting Web3’s Hidden Attack Surface: Universal XSS on Netlify’s Next.js Library

Archives

  • August 2023
  • January 2023
  • September 2022
  • December 2020
  • October 2020
  • June 2020
  • May 2020
  • April 2020
  • November 2019
  • September 2019
  • July 2019
  • December 2018
  • July 2018
  • May 2018
  • November 2017
  • August 2017
  • June 2017
  • May 2017