))
Welcome to The Erb Report , We Cover Local and International News, Analysis, And Information From Around the World. The Erb Report is an independent and alternative media organization dedicated to finding the truth, ending the left-right paradigm and widening the scope of viewpoints represented in media and our daily conversations. The Erb Report, has become a resource for individuals who are interested in news and information without the filtering, censorship, and overtones. Support via don ...
…
continue reading
The Taxgirl podcast is a series of conversations about taxes, money, and the choices we make. Because paying taxes is painful, but hearing about them shouldn't be.
…
continue reading
A podcast service about the United States' army and the information source from the best army websites.
…
continue reading
A "by Hackers for Hackers" podcast focused on technical content ranging from bug bounty tips, to write-up explanations, to the latest hacking techniques.
…
continue reading
Project 2025 what’s that all about?By The Erb Report
…
continue reading
1
Episode 81: Crushing Client-Side on Any Scope with MatanBer
2:04:48
2:04:48
Play later
Play later
Lists
Like
Liked
2:04:48
Episode 81: In this episode of Critical Thinking - Bug Bounty Podcast Justin is joined by MatanBer to go over some recent bug reports, as well as share some tips and tricks on client-side hacking and using DevTools effectively. Follow us on twitter at: @ctbbpodcast We're new to this podcasting thing, so feel free to send us any feedback here: info@…
…
continue reading
1
Episode 80: Pwn2Own VS H1 Live Hacking Event (feat SinSinology)
2:49:26
2:49:26
Play later
Play later
Lists
Like
Liked
2:49:26
Episode 80: In this episode of Critical Thinking - Bug Bounty Podcast Justin is joined by Sina Kheirkhah to talk about the start of his hacking journey and explore the differences between the Pwn2Own and HackerOne Events Follow us on twitter at: @ctbbpodcast We're new to this podcasting thing, so feel free to send us any feedback here: info@critica…
…
continue reading
1
Episode 79: The State of CSS Injection - Leaking Text Nodes & HTML Attributes
1:10:25
1:10:25
Play later
Play later
Lists
Like
Liked
1:10:25
Episode 79: In this episode of Critical Thinking - Bug Bounty Podcast we deepdive CSS injection, and explore topics like sequential import chaining, font ligatures, and attribute exfiltration. Follow us on twitter at: @ctbbpodcast Send us any feedback here: info@criticalthinkingpodcast.io Shoutout to YTCracker for the awesome intro music! ------ Li…
…
continue reading
1
17: They will start rolling out the FEMA camps soon beware
8:04
8:04
Play later
Play later
Lists
Like
Liked
8:04
They will start rolling out the FEMA camps soon bewareBy The Erb Report
…
continue reading
1
Episode 78: Less Writing, More Hacking - Reporting Efficiency Techniques
1:06:25
1:06:25
Play later
Play later
Lists
Like
Liked
1:06:25
Episode 78: In this episode of Critical Thinking - Bug Bounty Podcast we’re talking about writing reports. We share some tips that we’ve learned, and discuss ways that AI can (and can’t) help with that process. We also talk about the benefit of using tools like Fabric, Loom, and ShareX. Follow us on twitter at: @ctbbpodcast We're new to this podcas…
…
continue reading
1
Episode 77: Bug Bounty Mental - Practical Tips for Staying Sharp & Motivated
1:50:26
1:50:26
Play later
Play later
Lists
Like
Liked
1:50:26
Episode 77: In this episode of Critical Thinking - Bug Bounty Podcast Joel and Justin discuss some fresh writeups including some MongoDB injections, ORMs, and exploits in Kakao and iOS before pivoting into a conversation about staying motivated and avoiding burnout while hunting. Follow us on twitter at: @ctbbpodcast We're new to this podcasting th…
…
continue reading
1
16: Get ready for more election scams in November here it comes folks
10:15
10:15
Play later
Play later
Lists
Like
Liked
10:15
Get ready for more election scams in November here it comes folksBy The Erb Report
…
continue reading
1
15: We’ve got about 90 days before major food shortages, prepare yourself now
8:15
8:15
Play later
Play later
Lists
Like
Liked
8:15
We’ve got about 90 days before major food shortages, prepare yourselfBy The Erb Report
…
continue reading
1
Episode 76: Match & Replace - HTTP Proxies' Most Underrated Feature
1:34:43
1:34:43
Play later
Play later
Lists
Like
Liked
1:34:43
Episode 76: In this episode of Critical Thinking - Bug Bounty Podcast we’re talking about Match and Replace and the often overlooked use cases for it, like bypassing paywalls, modifying host headers, and storing payloads. We also talk about the HackerOne Ambassador World Cup and the issues with dupe submissions, and go through some write-ups. Follo…
…
continue reading
1
14: Well, the WHO pulled it off at the last minute and now they got a global pandemic treaty.
8:17
8:17
Play later
Play later
Lists
Like
Liked
8:17
Well, the WHO pulled it off at the last minute and now they got a global pandemic treaty.By The Erb Report
…
continue reading
1
Episode 75: *Rerun* of The OG Bug Bounty King - Frans Rosen
2:44:52
2:44:52
Play later
Play later
Lists
Like
Liked
2:44:52
Episode 75: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel are sick, So instead of a new full episode, we're going back 30 episodes to review. Follow us on twitter at: @ctbbpodcast We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io Shoutout to YTCracker for the …
…
continue reading
1
13: The social credit score is coming to the USA prepare yourself. It will be here soon
14:10
14:10
Play later
Play later
Lists
Like
Liked
14:10
The social credit score is coming to the USA prepare yourself. It will be here soonBy The Erb Report
…
continue reading
1
12: There will be Russian troops their navy ships right off the coast of Cuba.
8:50
8:50
Play later
Play later
Lists
Like
Liked
8:50
There will be Russian troops their navy ships right off the coast of Cuba. What’s Biden doing about this?By The Erb Report
…
continue reading
1
Episode 74: Supply Chain Attack Primer - Popping RCE Without an HTTP Request (feat 0xLupin)
1:38:20
1:38:20
Play later
Play later
Lists
Like
Liked
1:38:20
Episode 74: In this episode of Critical Thinking - Bug Bounty Podcast Justin sits down with Roni "Lupin" Carta for a deep dive into supply chain attacks and dependency confusion. We explore the supply chain attacks, the ethical considerations surrounding maintainers and hosting packages on public registries, and chat about the vision and uses of hi…
…
continue reading
1
11: We’re close to World War 3 what will you do
11:52
11:52
Play later
Play later
Lists
Like
Liked
11:52
We’re close to World War 3 what will you do and where will you goBy The Erb Report
…
continue reading
1
10: Covid and the Bird Flu they are here and now we have to deal with both
9:48
9:48
Play later
Play later
Lists
Like
Liked
9:48
Covid and the Bird Flu they are here and now we have to deal with both, what should we do?By The Erb Report
…
continue reading
1
9: President Trump is found guilty on all 34 counts according to the jury. This is bad news.
10:37
10:37
Play later
Play later
Lists
Like
Liked
10:37
President Trump is found guilty on all 34 counts according to the jury. This is bad news for the republicans.By The Erb Report
…
continue reading
1
Episode 73: Sandboxed IFrames and WAF Bypasses
31:13
31:13
Play later
Play later
Lists
Like
Liked
31:13
Episode 73: In this episode of Critical Thinking - Bug Bounty Podcast we give a brief recap of Nahamcon and then touch on some topics like WAF bypass tools, sandboxed iframes, and programs redacting your reports. Follow us on twitter at: @ctbbpodcast We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkin…
…
continue reading
1
8: Will Europe and the UK start World War III with Russia. It’s already begun
11:39
11:39
Play later
Play later
Lists
Like
Liked
11:39
get reBy The Erb Report
…
continue reading
1
7: They will remove God any way they can the Elites master plan
11:18
11:18
Play later
Play later
Lists
Like
Liked
11:18
They will remove God any way they can the Elites master planBy The Erb Report
…
continue reading
1
6: This is your warning please be careful and prepare yourself for the next pandemic
11:50
11:50
Play later
Play later
Lists
Like
Liked
11:50
This is your warning please be careful and prepare yourself for the next pandemicBy The Erb Report
…
continue reading
1
5: Will the Death of the Iranian president trigger World War 3
8:05
8:05
Play later
Play later
Lists
Like
Liked
8:05
Will the Death of the Iranian president trigger World War 3 Listen and find outBy The Erb Report
…
continue reading
1
4: The Elites who really runs the world find out
12:45
12:45
Play later
Play later
Lists
Like
Liked
12:45
The Elites who really runs the world find out now, listen you might be shocked!By The Erb Report
…
continue reading
The H5N1 Bird Flu, What will you do? will you take this vaccine?By The Erb Report
…
continue reading
1
2: What groups will be the first to have to take the bird flu vaccine
9:50
9:50
Play later
Play later
Lists
Like
Liked
9:50
What groups will be the first to have to take the bird flu vaccine?By The Erb Report
…
continue reading
1
1: The WHO pandemic treaty what you should know now
9:45
9:45
Play later
Play later
Lists
Like
Liked
9:45
The WHO pandemic treaty what you should know now, check this out!By The Erb Report
…
continue reading
By The Erb Report
…
continue reading
1
Episode 72: Research TLDRs & Smuggling Payloads in Well Known Data Types
52:49
52:49
Play later
Play later
Lists
Like
Liked
52:49
Episode 72: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel discuss some hot research from the past couple months. This includes ways to smuggle payloads in phone numbers and IPv6 Addresses, the NextJS SSRF, the PDF.JS PoC drop, and a GitHub Enterprise Indirect Method Information bug. Also, we have an attack vector feature…
…
continue reading
1
Episode 71: More VDP Chats & AI Bias Bounty Strats with Keith Hoodlet
1:45:21
1:45:21
Play later
Play later
Lists
Like
Liked
1:45:21
Episode 71: In this episode of Critical Thinking - Bug Bounty Podcast Keith Hoodlet joins us to weigh in on the VDP Debate. He shares some of his insights on when VDPs are appropriate in a company's security posture, and the challenges of securing large organizations. Then we switch gears and talk about AI bias bounties, where Keith explains the ap…
…
continue reading
1
Episode 70: NahamCon and CSP Bypasses Everywhere
43:08
43:08
Play later
Play later
Lists
Like
Liked
43:08
Episode 70: In this episode of Critical Thinking - Bug Bounty Podcast we’re once again joined by Ben Sadeghipour to talk about some Nahamcon news, as well as discuss a couple other LHE’s taking place. Then they cover CI/CD and drop some cool CSP Bypasses. Follow us on twitter at: @ctbbpodcast We're new to this podcasting thing, so feel free to send…
…
continue reading
1
Episode 69: Johan Carlsson - 3 Month Check-in on Full-time Bug Bounty.
1:49:04
1:49:04
Play later
Play later
Lists
Like
Liked
1:49:04
Episode 69: In this episode of Critical Thinking - Bug Bounty Podcast we’re joined by Johan Carlsson to hear about some updates on his bug hunting journey. We deep-dive a CSP bypass he found in GitHub, a critical he found in GitLab's pipeline, and also talk through his approach to using script gadgets and adapting to highly CSP'd environments. Then…
…
continue reading
1
Episode 68: 0-days & HTMX-SS with Mathias
1:03:53
1:03:53
Play later
Play later
Lists
Like
Liked
1:03:53
Episode 68: In this episode of Critical Thinking - Bug Bounty Podcast Mathias is back with some fresh HTMX research, including CSP bypass using HTMX triggers, converting client-side response header injection to XSS, bypassing HTMX disable, and the challenges of using HTMX in larger applications and the potential performance trade-offs. We also talk…
…
continue reading
1
Episode 67: VDPs & Accidental Program VS Hacker Debate Part 2
1:19:51
1:19:51
Play later
Play later
Lists
Like
Liked
1:19:51
Episode 67: In this episode of Critical Thinking - Bug Bounty Podcast we deepdive on the topic of Vulnerability Disclosure Programs (VDPs) and whether they are beneficial or not. We also touch on the topic of leaderboard accuracy, and continue the Program VS Hacker debate regarding allocating funds for bounties. Follow us on twitter at: @ctbbpodcas…
…
continue reading
1
Episode 66: CDN-CGI Research, Intent To Ship, and Louis Vuitton
58:20
58:20
Play later
Play later
Lists
Like
Liked
58:20
Episode 66: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel discuss the recent YesWeHack Louis Vuitton LHE, the importance of failure as growth in bug bounty, and Justin shares his research on CDN CGI. Follow us on twitter at: @ctbbpodcast We're new to this podcasting thing, so feel free to send us any feedback here: info@…
…
continue reading
1
Episode 65: Motivation and Methodology with Sam Curry (Zlz)
2:29:05
2:29:05
Play later
Play later
Lists
Like
Liked
2:29:05
Episode 65: In this episode of Critical Thinking - Bug Bounty Podcast we sit down with Sam Curry to discuss the ethical considerations and effectiveness of hacking, the importance of good intent, and the enjoyment Sam derives from pushing the boundaries to find bugs. He shares stories of his experiences, including hacking Tesla, online casinos,Star…
…
continue reading
1
Episode 64: .NET Remoting, CDN Attack Surface, and Recon vs Main App
1:08:04
1:08:04
Play later
Play later
Lists
Like
Liked
1:08:04
Episode 64: In this episode of Critical Thinking - Bug Bounty Podcast we talk about Justin and Joel delve into .NET remoting and how it can be exploited, a recent bypass in the Dom Purify library and some interesting functionality in the Cloudflare CDN-CGI endpoint. They also touch on the importance of collaboration and knowledge sharing, JavaScrip…
…
continue reading
Alms Army Course https://www.armylearningmanagementsystem.com/course/ the Army Learning Management System (ALMS) has emerged as a cornerstone of the U.S. Army's educational ethos. This digital platform facilitates a range of courses designed to enhance the professional development and operational effectiveness of soldiers. From leadership training …
…
continue reading
https://www.hrcarmy.org/erb-hrc/ ERB HRC The Enlisted Record Brief (ERB) is an essential document for every soldier serving in the United States Army. Managed by the Human Resources Command (HRC), the ERB is a concise, yet comprehensive record that outlines a soldier's military career, including personal information, training, education, and servic…
…
continue reading
https://www.akooffline.net/mhs-genesis/ MHS Genesis MHS GENESIS is the electronic health record (EHR) system implemented across the United States Department of Defense (DoD) healthcare and military health system. It is designed to provide a single, integrated patient record for service members, veterans, and their families, encompassing medical and…
…
continue reading
Episode 63: In this episode of Critical Thinking - Bug Bounty Podcast we welcome back Jason Haddix (From Episode 12) to talk about some updates to his The Bug Hunter's Methodology, as well as his own personal life and hacking journey. We talk about the start of his new company, and then venture into topics such as using threat intelligence and buyi…
…
continue reading
Episode 62: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel are back with some additional research resources that didn’t make the Portswigger Top-Ten, but that are worth looking at. Follow us on twitter at: @ctbbpodcast Feel free to send us any feedback here: info@criticalthinkingpodcast.io Shoutout to YTCracker for the aw…
…
continue reading
1
Episode 61: A Hacker on Wall Street - JR0ch17
1:27:00
1:27:00
Play later
Play later
Lists
Like
Liked
1:27:00
Episode 61: In this episode of Critical Thinking - Bug Bounty Podcast Justin is joined by Jasmin Landry to share some stories about startup security, bug bounty, and the challenges of balancing both. He also shares his methodology for discovering OAuth-related bugs, highlights some differences between structured learning and self-teaching, and then…
…
continue reading
1
Episode 60: Our Take on PortSwigger's Top 10 Web Hacking Techniques of 2023
1:24:37
1:24:37
Play later
Play later
Lists
Like
Liked
1:24:37
Episode 60: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel review the Portswigger Research list of top 10 web hacking techniques of 2023. Follow us on twitter at: @ctbbpodcast Send us any feedback here: info@criticalthinkingpodcast.io Shoutout to YTCracker for the awesome intro music! ------ Links ------ Follow your hosts…
…
continue reading
1
Episode 59: Bug Bounty Gadget Hunting & Hacker's Intuition
1:39:09
1:39:09
Play later
Play later
Lists
Like
Liked
1:39:09
Episode 59: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel discuss the concept of gadgets and how they can be used to escalate the impact of vulnerabilities. We talk through things like HTML injection, image injection, CRLF injection, web cache deception, leaking window location, self-stored XSS, and much more. Follow us …
…
continue reading
1
Episode 58: Youssef Sammouda - Client-Side & ATO War Stories
1:54:51
1:54:51
Play later
Play later
Lists
Like
Liked
1:54:51
Episode 58: In this episode of Critical Thinking - Bug Bounty Podcast we finally sit down with Youssef Samouda and grill him on his various techniques for finding and exploiting client-side bugs and postMessage vulnerabilities. He shares some crazy stories about race conditions, exploiting hash change events, and leveraging scroll to text fragments…
…
continue reading
1
Episode 57: Technical breakdown from Miami Hacking Event - H1-305
32:34
32:34
Play later
Play later
Lists
Like
Liked
32:34
Episode 57: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel are live from Miami, and recap their experience and share takeaways from the live hacking event. They highlight the importance of paying attention to client-side routing and the growing bug class of client-side path traversal. They also discuss the challenges of …
…
continue reading
ALMS Army Traininghttps://www.almsarmy.org/training/ In the evolving landscape of military preparedness, ALMS Army Training emerges as a pivotal tool in sustaining the operational effectiveness and readiness of the U.S. Army. This digital learning platform is intricately designed to support the lifelong learning ethos of the Army, providing soldier…
…
continue reading
1
What is Assignment Interactive Module AIM in HRC?
8:43
8:43
Play later
Play later
Lists
Like
Liked
8:43
What is Assignment Interactive Module AIM in HRC? https://www.hrcarmy.org/what-is-assignment-interactive-module-aim-in-hrc/ The Assignment Interactive Module (AIM) within the Human Resources Command (HRC) is a cutting-edge system designed to enhance the assignment process for U.S. Army personnel. AIM serves as a transparent, interactive platform th…
…
continue reading
https://www.akooffline.org/login/ AKO Offline Login Army Knowledge Online (AKO) Offline is a feature or capability associated with the AKO platform, designed to allow U.S. Army personnel and other authorized users to access critical information and resources without requiring an active internet connection. AKO itself is a web-based information serv…
…
continue reading
