【Github】 API 更改可见权限 https://hackerone.com/reports/1086781
【 Krisp】Log4j CVE-2021–44228 https://hackerone.com/reports/1431624
【BlockDev Sp. Z o.o】SQL 注入导致检索整个数据库的内容。 https://hackerone.com/reports/1002641
我如何为 Log4j 0day 安全漏洞构建 PoC https://blog.melbadry9.xyz/write-ups/fuzzing/creating-sharing-log4shell-poc
ONUS 攻击——Log4Shell 漏洞的真实案例 https://cystack.net/research/the-attack-on-onus-a-real-life-case-of-the-log4shell-vulnerability
VPN 整体侦察、测试、枚举和利用工具包 https://github.com/klezVirus/vortex
Api key猜测 https://api-guesser.netlify.app/
