logo

YesWeHack Blog | Cybersecurity Insights and Bug Bounty Trends| RSS Feed

ID: 5a75eabb-d09d-527f-8517-36fb2df3b5d2

STIX ID: identity--5a75eabb-d09d-527f-8517-36fb2df3b5d2

Feed Type: rss

Earliest post: 2017-04-18

Latest post: 2026-07-07

Explore bug bounty insights on the YesWeHack Blog. Stay updated with vulnerability disclosure trends, hacker stories, and tips to excel in bug bounty programs.

01/01/2020
07/08/2026
Title Date Published Describes IncidentAuthorVisible
NIS 2 in brief, security tech hype cycle, Italy’s first ever live Bug Bounty – OffSec roundup for CISOs2024-09-20TrueTrue
Limitations are just an illusion - advanced server-side template exploitation with RCE everywhere2024-08-27TrueTrue
ORM leaks, CSRF is alive, lockpicking lessons – ethical hacker news roundup2024-08-14TrueTrue
Partial SolarWinds reprieve, CrowdStrike lessons, LLM kryptonite – OffSec roundup for CISOs2024-08-06TrueTrue
Dojo challenge #34 winners!2024-08-05TrueTrue
Hack Me I’m Famous #2: Louis Vuitton sets trend with first live hacking event in luxury fashion sector2024-07-30TrueTrue
White-box penetration testing with Xdebug: Debugging for PHP vulnerabilities2024-07-19TrueTrue
Sam Curry modem masterclass, PHP threat to Windows Servers, Calls for AI safety Bug Bounties – ethical hacker news roundup2024-07-09TrueTrue
Apple declines to pay Kaspersky vuln reward, Bug Bounty ‘extortion’ dispute, Microsoft Recall backlash – OffSec roundup for CISOs2024-07-02TrueTrue
Dojo challenge #33 winners!2024-06-25TrueTrue
Dojo challenge #32 winners!2024-05-17TrueTrue
Dojo challenge #31 winners!2024-04-16TrueTrue
Dojo challenge #30 winners!2024-03-12TrueTrue
‘Adapt payloads to your targets’: Brumens’ Bug Bounty tips for newbies2024-03-07TrueTrue
‘Be curious, be persistent’: Icare on thriving as a Bug Bounty hunter2024-03-01TrueTrue
Unveiling Dojo v2: Our new CTF and realistic challenge-building framework2024-02-07TrueTrue
'ROI is easy to justify’: Bug Bounty success story from a luxury goods retailer 2024-02-01TrueTrue
DOJO Challenge #28 Winners!2023-11-14TrueTrue
DOJO Challenge #27 Winners!2023-10-09TrueTrue
DOJO Challenge #26 Winners!2023-09-04TrueTrue
DOJO Challenge #25 Winners!2023-07-27TrueTrue
LeHACK recap: hunters push boundaries at YesWeHack Live Bug Bounty with Red Cross and Les Mousquetaires2023-07-11TrueTrue
DOJO CHALLENGE #20 Winners!2023-06-06TrueTrue
DOJO Challenge #23 Winners!2023-05-15TrueTrue
DOJO Challenge #22 Winners!2023-04-07TrueTrue
Server side prototype pollution, how to detect and exploit2023-02-15TrueTrue
DOJO CHALLENGE #21 Winners!2023-02-14TrueTrue
Exploring JavaScript's exploits: A deep dive into XSS vulnerabilities2022-12-08TrueTrue
HTTP Header Exploitation2022-11-16TrueTrue
Back to Decathlon’s Live Bug Bounty2022-06-15TrueTrue
DOJO CHALLENGE #17 Winners!2022-06-13TrueTrue
Getting started with smart contract in Bug Bounty2022-04-05TrueTrue
Getting Started with iOS Penetration Testing (Part 2)2022-03-18TrueTrue
DOJO CHALLENGE #15 Winners!2022-02-28TrueTrue
DOJO CHALLENGE #19 Winners!2022-02-12TrueTrue
Getting Started with iOS Penetration Testing (Part 1)2022-01-19TrueTrue
DOJO CHALLENGE #10 Winners!2021-05-25TrueTrue
File Upload Attacks (Part 1)2021-05-12TrueTrue
DOJO CHALLENGE #9 Winners!2021-04-26TrueTrue
DOJO CHALLENGE #8 Winners!2021-03-29TrueTrue
How to exploit GraphQL endpoint: introspection, query, mutations & tools2021-03-24TrueTrue
DOJO CHALLENGE #7 Winners!2021-03-12TrueTrue
PimpMyBurp #1 – PwnFox + Autorize: The perfect combo to find IDOR2021-02-03TrueTrue
DOJO CHALLENGE #6 Winners!2020-12-22TrueTrue

1–44 of 44