Informative video as always Ben, I would really like to hear about how you approach GraphQL APIs, being used to REST, GraphQL seems a whole lot of a different game. I have experimented with using clairvoyance on a couple of APIs but can't bring myself to be comfortable with it as I am with REST.
SIR PLEASE REPLY ME I have found a API key hard-coded in a javascript file but I have a confussion that should I report it as a information disclosure vulnerability or look forward to saw impact but I don't know what to do next . please assist me sir
definitely look for more impact... try to find out what purpose the API key is serving, a lot of times such tokens are used for logging or analytics services which are marked informative if you report them.
![Kodak Black - Versatile 4 [Official Video]](http://i.ytimg.com/vi/VcP_1Ua__vY/mqdefault.jpg)
app.hackinghub.io/hubs/nahamsec-bug-bounty-course
USE CODE: UPDATE50OFF for a discount!
Its showing page not found. Do we need to login to access the page.
Is the course the same as the one on Udemy?
Of course, We would like to see an episode about graphql and path traversal ❤
A path traversal video sounds awesome!
awesome video i fully understand how i find API vulnerabilities.
Informative video as always Ben, I would really like to hear about how you approach GraphQL APIs, being used to REST, GraphQL seems a whole lot of a different game. I have experimented with using clairvoyance on a couple of APIs but can't bring myself to be comfortable with it as I am with REST.
Awesome video, a nice summary, just what I need to upskill on at the moment.
Would love to see Path Traversal next please bro!
Great Episode ... Path Traversal Next ...
Gracias por el video! Sí, queremos los videos de Path Traversal y GraphQL. Gracias y Saludos!
graphql please
GraphQL Injection Good topic
@@SonaliSingh-ri6jq yeah it is
SIR PLEASE REPLY ME
I have found a API key hard-coded in a javascript file but I have a confussion that should I report it as a information disclosure vulnerability or look forward to saw impact but I don't know what to do next .
please assist me sir
definitely look for more impact... try to find out what purpose the API key is serving, a lot of times such tokens are used for logging or analytics services which are marked informative if you report them.
@@h0udini420 hey are you a hunter
@@monikasharma4403 yes
Need this episode about graphql and path traversal
Thank you for the graphql in advance
Hi, Sorry, but I can't find the udemy link
need both path traversal and graphql based vulns ben🙂
A Path Traversal video it would be super nice
both PLEASE....!!!!
🫡
great video
Cool thanks
graphql + Path Traversal plz
make a video on graphql
not sure if you aware but during nahamcon they made this ruclips.net/video/tIo_t5uUK50/видео.html i just seen this earlier today myself
Both plz
Awesome content and very useful!
Your link above doesn’t work
Hey ben , bring the next episode of redacted series
path traversal and gql plzz
GraphQL
path traversal
Do you think apis are a gold mine compared to the usual bughunting?
Only 3% of bug bounty hunters ever make a cent.
Is a matter of skill
I made 250 bucks in 1 day of research
Really? Care to share a link from where you get that number?
Bruhh, Skill issue
Graphql
great
Hello brother I need your help plz necessary how I can connect you
graphql please
Graphql
graphql
Graphql
graphql