Featured

CVE-2025-27580

You're so... Predictable Earlier this year, while red teaming some public-facing web apps, I came across an unknown vulnerability in a platform called BRICS. It...

RoseHacks RoseHacks
24 Apr 2025

Stories

CVE-2025-27580

CVE-2025-27580

You're so... Predictable Earlier this year, while red teaming some public-facing web apps, I came across an unknown vulnerability in a platform called BRICS. It relied on tokens generated using...

RoseHacks RoseHacks
24 Apr 2025
Password Reset Poisoning

Password Reset Poisoning

Poisoning Password Reset Links

RoseHacks RoseHacks
18 Jan 2025
CVE-2024-53553

CVE-2024-53553

Authentication Bypass in FOIAXpress® Public Access Link (PAL)

RoseHacks RoseHacks
14 Jan 2025
Getting Started in Bug Bounty

Getting Started in Bug Bounty

The Bug Bounty Journey

RoseHacks RoseHacks
05 Sep 2024
Finding Hidden Features

Finding Hidden Features

Fuzzing to Find Hidden Features

RoseHacks RoseHacks
23 Aug 2024
OSINT and Weak Passwords

OSINT and Weak Passwords

Leave No Stone Unturned

RoseHacks RoseHacks
21 Aug 2024

Writeups

Cyber Attack

Predictable

Armaxis

Binary Basis

Ghostly Persistence

Foggy Intrusion

Terrorfryer

LinkHands

WayWitch

El Pipo

El Mundo

Cursed Stale Policy

Graverobber

P.H.P.

Notesy

IOI SaveData

Game Capsule

dinvoice

Bibliophile

Untraceable

ThreeKeys

Cat

Certificates

🥇 HTB Fall Huddle 2024

🥇 Hack The Boo 2024

🥇 HTB Univeristy 2024