Back to directory
WRITEUP #4500

How I landed on my first bounty : No SPF / DMARC Record Found leading to Social Engineering Attack

OtherNo valid SPF recordsNo DMARC records
byFardeen Ahmed
Bounty
250
Program
Lululemon
Published
Jul 18, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@fardeenahmed410/how-i-landed-on-my-first-bounty-no-spf-dmarc-record-found-2fdfea64cf52
RELATED WRITEUPS
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI
Ghost In The Ppl Part 1: Byovdll
OtherUse-After-Free
Part 2: From Byovdll To Arbitrary Code Execution In Lsass
OtherUse-After-Free

Built with ❤️ by Shubham Rawat