HACKERBADGER

Breaking things. Writing it down.

HACKERBADGER
Visual_ID: HACKERBADGER

Latest Research

MesaNet Access Panel: OTP Verify Bypass Chained to SSRF Internal Disclosure

2026.07.14
BugForge hard OTP Bypass + SSRF to Internal Store

Part 1: Pentest Report

#ssrf #broken-access-control #otp-bypass #waf-bypass #url-parser-confusion #bugforge

CopyPasta: Forgeable Session Tokens Enable Cross-User Impersonation

2026.07.13
BugForge easy Forgeable Session Tokens

Part 1: Pentest Report

#predictable-session #session-forgery #account-takeover #impersonation #broken-access-control #bugforge

Cheesy Does It: Password-Reset Account Takeover via OTP Verification Bypass

2026.07.09
BugForge easy Password-Reset OTP Verification Bypass

Part 1: Pentest Report

#bugforge #webapp #account-takeover #password-reset #otp #otp-verification-bypass #type-confusion #broken-authentication #cwe-640 #cwe-697

Vaultly: Prototype Pollution to Anonymous Cross-Tenant File Disclosure

2026.07.04
BugForge medium Prototype Pollution

Part 1: Pentest Report

#prototype-pollution #access-control #multi-tenant #nextjs #merge-patch #bugforge

Sokudo: Version-Drift Mass-Assignment to Admin

2026.07.04
BugForge easy Version-Drift Mass Assignment

Part 1: Pentest Report

#mass-assignment #privilege-escalation #version-drift #broken-access-control #jwt #bugforge #webapp

CopyPasta: Collection Share Endpoint Over-Exposes Private Snippets

2026.06.25
BugForge easy Broken Access Control

Part 1: Pentest Report

#broken-access-control #broken-object-property-level-authorization #excessive-data-exposure #api-security #idor #express #react #bugforge
analytics

Activity Log

[2026.07.14] New writeup published: MesaNet Access Panel: OTP Verify Bypass Chained to SSRF Internal Disclosure
[2026.07.13] New writeup published: CopyPasta: Forgeable Session Tokens Enable Cross-User Impersonation
[2026.07.09] New writeup published: Cheesy Does It: Password-Reset Account Takeover via OTP Verification Bypass
[2026.07.04] New writeup published: Vaultly: Prototype Pollution to Anonymous Cross-Tenant File Disclosure
[2026.07.04] New writeup published: Sokudo: Version-Drift Mass-Assignment to Admin
construction

Toolkit

web v0.3.0
Caido Workbench
SQLi and JWT workbench plugin for Caido proxy.
speed v1.2.0
Race
HTTP/2 single-packet race condition testing.
key v1.0.0
JWTForge
JWT creation, modification, and signing tool.
more_horiz
More Coming
Additional tools in development.