Latest Posts

Bountycon 2022 - Android Trinity - PWN

Bountycon 2022 - Android Trinity - PWN

Ashley King 06 Jul 2022 Meta

Whilst working on the BountyCon 2022 CTF, I spent the majority of the time focusing on the Android Trinity challenge. This was one of two PWN...

Read More
Disclosing BCC Recipients of an email

Disclosing BCC Recipients of an email

Ashley King 30 Mar 2022 HackerOne

This post will cover an interesting logic flaw found in a private bug bounty program. Whilst the name of this company will be known as...

Read More
Abusing Facebooks Call To Action to launch internal deeplinks

Abusing Facebooks Call To Action to launch internal deeplinks

Ashley King 02 Feb 2022 Meta

Ever noticed that big blue button on the top of every Facebook page? This feature, known as Call to action or CTA is designed for user...

Read More
Open redirects are not dead! Or are they?

Open redirects are not dead! Or are they?

Ashley King 20 Jan 2022 Meta

Over the last few years doing bug bounties, it's becoming more and more common for companies to reject reports about Open Redirects. Once upon a...

Read More
Bypass Microsoft Teams Tenancy Permission - Edit Sent Messages

Bypass Microsoft Teams Tenancy Permission - Edit Sent Messages

Ashley King 18 Oct 2021 Microsoft

Back in December 2019 I reported a Microsoft Teams Tenancy Permission bypass that allowed a user to modify...

Read More
Abusing corporate URL shorteners

Abusing corporate URL shorteners

Ashley King 27 Jun 2021 Misc

URL shorteners are great! They allows users to turn a 200 character url into something substansially less. It's ideal for those...

Read More