RT @Dinosn: Interesting approach. The redirect seem to google calendar but it actually points to ' , where the lin….

RT @niksthehacker: An amazing time in live hacking event in #hongkong with @mcipekci @ozgur_bbh @Dinosn @turakbusra @A_Burak_Gokalp @ryanr….

RT @intigriti: 2️⃣ Authentication bypasses. @ozgur_bbh shares 5 ways to bypass authentication on your target!.

RT @AlicanKiraz0: Hi everyone! After a long period of work, I have completed the full analysis of the incident in Lebanon, as well as a det….

RT @InfoSecComm: Examine ways to get around multi-factor authentication, thanks to @ozgur_bbh for investigating response manipulation scena….

RT @SynackRedTeam: Synack Red Team (SRT) member @ozgur_bbh dives into two two real-world MFA bypass techniques via response tampering that….

RT @InfoSecComm: 🔥 107th edition of IWWeekly is LIVE 🔥. Read here:

Check out my latest technical post published at @synack blog, titled as “Multi-factor Authentication Bypass Examples via Response Tampering”.

I started seeing BigQuery SQL database more often at the applications that I tested. While it has a similar technology to other DBMS'es, it still has a unique syntax for exploitation. Here is my blog post from 2 years ago in case you missed it.

Do you want to dive into the bug bounty platforms but still struggle how to start? Here is my non-technical advisory blog post from 2.5 years ago that I recommend all people who is interested to start bug hunting or newbie at the sector. Link:

Do you have a blind error based SQL injection, which you cannot exploit further? If that's the case, here is my blog post titled "Turning Blind Error Based SQL Injection Into An Exploitable Boolean One" which covers an additional technique to exploit.

If you are testing an application which is integrated within AWS document services and S3 buckets; here is my vulnerability write-up from 4 years ago which allowed me to view all sensitive files within bypassing the document signing mechanism.

Do you want to find different type of vulnerabilities that automatic scanners mostly missing? Here is a blog post that I wrote 3 years ago about Load Balancer, Shallow Copy and Cache problems that causes data leakages, resulting even account takeovers.

If you still cannot find your first RCE vulnerability on bug bounty programs, here is my blog post about of Simple Remote Code Execution Vulnerability Examples for Beginners from 3 years ago, which I found mostly at @SynackRedTeam programs. Link:

Please note that, as of 2024, %99 of BB programs do not accept this as a valid bug, but mark as low impact. I am still keeping this script updated because it is still useful on defensive side, to prevent unauthorized usage from other parties.

Google Maps API Scanner is updated:.- Code is updated to reflect correct responses from Google API's, which are recently updated. - Deprecated API's are removed. - Python 2 support is removed. For more information:

Security BSides Athens talk from 2020:

Before working on new blog post ideas at 2024, I wanted to share some of my best posts again from the previous years, in case anyone missed them. 1- A Less Known Attack Vector, Second Order IDOR Attacks.Blog post:

Looks like Github SMS issue is finally solved. I can access my account after 3 months 😃.

Turkcell kullanıp da Github 2FA aktif olan var mıdır acaba? Turkcell ile ne konuştuysak ne yaptıysak bir türlü halledemedik. Başkalarında da aynı problemin olup olmadığını anlayabilirsem süper olacak. 1 aydır hesaba hiçbir şekilde erişemiyorum, şaka gibi.