TruffleHog Chrome Extension - Open CORS in SAAS API's Lead to Leaky Keys
Offered By: HackerOne via YouTube
Course Description
Overview
Discover how to uncover hidden API keys using the open-source TruffleHog Chrome extension in this 25-minute talk by HackerOne. Learn about the potential security risks associated with open CORS in SaaS APIs and how they can lead to exposed keys. Follow along as Dylan demonstrates the tool's functionality, shares real-world examples of discovered keys, and provides a step-by-step guide on effectively utilizing the extension for your own security assessments.
Syllabus
TruffleHog Chrome Extension : Open CORS in SAAS API's Lead to Leaky Keys | @TruffleSecurity
Taught by
HackerOne
Related Courses
Leveraging Bug Bounties for Your CareerHackerOne via YouTube Breaking VNC Clients with Evil Servers
HackerOne via YouTube The Bug Hunter's Methodology - Application Analysis
HackerOne via YouTube Vulnerabilities I've Found - The Fun, the Weird and the Technical
HackerOne via YouTube Submitting High Quality Bug Bounty Reports - Tips from Behind the Curtain
HackerOne via YouTube