简单改ID越权250$ https://hackerone.com/reports/1124974
TikTok XSS 6000$ https://hackerone.com/reports/1452375
CVE-2022-21703,grafana跨站请求伪造(CSRF) https://jub0bs.com/posts/2022-02-08-cve-2022-21703-writeup/
账号接管Tip https://medium.com/@kojodaprogrammer/full-account-takeover-ato-a-tale-of-two-bugs-d1b3765ff1de
钓鱼邮件Tips https://www.redteam.cafe/phishing/long-live-dmarc-email-spoof-issues
一款企业信息查询工具,可以帮助企业查询自身对外公开的应用、新媒体,网站等 https://github.com/PoJun-Lab/lbb
DDoS攻击脚本(切勿恶意使用) https://github.com/MHProDev/MHDDoS
fuzz隐藏参数 burpsuite插件+脚本 https://github.com/Sh1Yo/x8
