I’ve built a tool for myself that ended up finding my last 4 Hackerone bugs, and I’m trying to figure out if it’s useful to anyone else.
First, It’s not an automated scanner, and it doesn't use or implement AI anywhere. Purely a program I built to find things I don't think I would have normally found myself.
What it is:
- A browser extension
- You log in (or not), browse the app normally
- Click “record”, perform your usual workflow, testing, etc., click “stop”
- It captures the exact API calls you made
Then the tool tries to break logic assumptions that emerged from your own flow.
Example:
- You apply a coupon
- Cart total changes
- Checkout succeeds
The tool then asks things like:
- Can the coupon be reused?
- Can another user apply it?
- Can it be applied to a different product?
- Can checkout / refund be abused to get money back?
It does this by replaying and mutating the same requests you already made, and it only reports an issue if it can prove its theories to be correct.
Its also basically zero-friction, since it runs in your own browser, works based on your flow, and won't flood you with false positives.
Two questions:
- Would you use something like this?
- Would you pay for it?
[link] [comments]
from hacking: security in practice https://ift.tt/jlBFbgZ
Comments
Post a Comment