Resources

People often ask me "How did you learn how to hack?" The answer: by reading. This page is a collection of the blog posts and other articles that I have accumulated over the years of my journey. Enjoy!

HackerOne has a warning page when a user is going to an external site. In particular, this happens on all redirects. These redirects commonly have sensitive information, such as keys or exploit proof of concepts (POC).

When a third-party site had been indexed with HackerOne links, the sensitive information in this link was shown. Because of the usage of the link, unlisted YouTube videos were found with POCs and other information was leaked.

I had never considered search engines as a way to leak information! It is quite common for sites to have this redirect page like HackerOne does. So, this bug is probably out there in other places as well.