top of page
Search
The Anti-Recon Recon Club (using ReconFTW)
Recon is important, but some people hate it. I get it. When you're in the zone and ready to pounce on a target, you just want to start...
Jason Haddix
Jan 30, 20235 min read
11,072 views
1 comment
The 100+ Million Person Data Disclosure
Or, That time I hacked a whole country by accident! I have done consulting gigs all over the world for security testing, and I frequently...
Jason Haddix
Jan 29, 20232 min read
3,605 views
0 comments
The secrets of automation-kings in bug bounty
For those looking to make big money in the world of bug bounty, finding 1day (or 1month) web exploits that haven't made their way into...
Jason Haddix
Dec 6, 20222 min read
11,560 views
3 comments
Live Recon - Lily Clark
Live Recon discusses offensive security topics. This episode we got to chat with Lily Clark. Lilly has one of the most amazing stories...
Jason Haddix
Aug 4, 20221 min read
258 views
0 comments
Bounty Thursday - All things DNS w/ STOK and Codingo
Another week of co-hosting Bounty Thursdays with my good friend STOK and special guest Codingo! We talk a lot about DNS related to recon;...
Jason Haddix
Jun 26, 20221 min read
521 views
0 comments
The Medical Alert Hack
Not too long ago I put a whole city on high alert during a security assessment. A tale of caution. Read along to learn my approach &...
Jason Haddix
Jun 25, 20223 min read
1,129 views
0 comments
Live Recon - with @Yassineaboukir
I’m back again as a cohost in this episode of Live Recon. Catch Ben, myself, and Yassine chatting about his methodology to find bugs and...
Jason Haddix
Jun 24, 20221 min read
836 views
0 comments
A hackers guide to FINDING cybersecurity jobs
Getting your foot in the door or finding your next gig in cyber security is sometimes a daunting task. Just like hacking, a methodology...
Jason Haddix
Jun 16, 20223 min read
12,962 views
0 comments
The Complete Compromise of a Password Manager Site
Here's one of my stories about a security assessment I did on a password manager company. One of my teams and I could have accessed...
Jason Haddix
May 9, 20223 min read
1,607 views
0 comments
Penetrating a porn site
🧵Another hacker story thread!🧵 === Penetrating a Porn Site === How I hacked access to the most sensitive areas of a porn site using...
Jason Haddix
May 1, 20223 min read
5,994 views
1 comment
ToolTime #2 - SSL Certificate Parsers for Recon
Exploring SSL Certificate parsers: https://github.com/projectdiscovery/httpx https://github.com/glebarez/cero https://github.com/hakluke/...
Jason Haddix
Apr 29, 20221 min read
1,035 views
0 comments
Jason Haddix
Apr 24, 20220 min read
497 views
0 comments
Jason Haddix
Apr 23, 20220 min read
520 views
0 comments
Bug-Bounty/Hacking Diary 4/8/22 - SQL Injection
Everyone is sick in the house but I had some running scans I needed to check up on. I found a SQL injection bug on a blog. Here's how I...
Jason Haddix
Apr 11, 20222 min read
1,975 views
0 comments
ToolTime #1 - FeroxBuster (content discovery)
A new series where i will do a video cast reviewing offensive security tools! Last week I took a look at a new favorite of mine,...
Jason Haddix
Apr 10, 20221 min read
896 views
0 comments
My Xmind Hunt Template for @hakluke
I get asked a lot for my XMIND mindmap template. I start with this and fill it out as I hunt =) Enjoy! Rename extension to .xmind
Jason Haddix
Apr 10, 20221 min read
4,238 views
0 comments
Stealing checks worth millions & pwning a bank
Another long (hacker) story of mine! Once upon a time contracted to do a penetration test on a bank… I spent the better part of a week...
Jason Haddix
Apr 8, 20223 min read
12,250 views
0 comments
bottom of page