Useful links: - Our Discord: - Our Critical Thinkers Tier (MasterClasses, Exclusive Tools, 0-day -> bug bounty services, MUCH more): - Our Full-time Bug Hunter's Guild (application only):

Cookie bombing, of course. hahah

HackerNotes for this week is here! Head over to our blog to check out the latest stuff we talked about on the pod in a readable format:

Just get intimate with the app...

Lol, browser 0-days dropping in the cool-research channel on the CTBB discord. Shoutout to @slonser_ @ViniSilvaCa @kevin_mizu @ryotkak @serverinspector and the rest of the squad for contributing ❤️

New episode is out! In this episode we cover the recent DeepSeek incident, some industry news and a deep dive into some Creative Recon Techniques:

6. Enumerate objects and data fields: since object names are often customised, you may not be able to blindly guess them. However, schema exports and analysing _api/ calls in the front-end can help identify useful queries. Aaron’s research found over 1 million exposed healthcare records due to these misconfigurations. Understanding Power Pages’ access controls and API structure is key to identifying and reporting similar vulnerabilities. Check out the full research here by @ConspiracyProof:

Days like these remind us why we do what we do. Happy to see another 2 top hackers join our ranks @0xacb @x1m_martijn ❤️

Pro tip: When testing ServiceNow, hit the kb_knowledge table’s text field with the filterText parameter. If display_value comes back **null**, the field exists—you just need to find the right one to read. @ConspiracyProof has pulled plenty of passwords and tokens this way. If it sounds cool, you should check the full thing:

If you wanna get your hands on the MasterClass, hop into the discord and subscribe to the Critical Thinkers tier. The full recording will drop later today.

Almost every company is using third-party SaaS tools, and in this latest episode, we have a legend in the SaaS security space & AppOmni Researcher @ConspiracyProof give us the low-down on how to attack SalesForce, ServiceNow, and MS Power Pages.

Windows ANSI-to-Unicode conversions can break apps! Best-fit mappings may misinterpret characters (￥ → \\), creating unexpected bugs. Always make sure to test these encoding edge cases for vulnerabilities! (credit: @orange_8361 and @_splitline_)

Read more here:

Agentic models, better prompts, and privacy-first workflows can transform your AI game. Learn more by watching the episode with Jason Haddix: