Hijacking accounts with host manipulation using collaborator

Hunt your targets | Hackers gonna hack.
  1. Capture request of reset password
  2. Modify host as : host.com.burplink.net
  3. Forward request from repeater
  4. Reset link in inbox, Click on it . We’ll get reset token
Hunters after knowing this method to every program….



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Aditya Shende

Aditya Shende


#kongsec | Solo Bounty Hunter | Function Exploits and Report Crafting | Bikes | Not a XSS guy | Own views | Bugcrowd Top 100 l Top 10 P1 warriors | Biker