Dat 55 comes with a write up for an SSRF bug and a small script gathered from Ashish Kunwar that will test firebase API Keys.
Day 54 comes with testing for Subdomain Takeover on Microsoft Azure and simply explaining “TE-CL” HTTP Request Smuggling attack.
Day 53 comes with a pretty handy tool for recon called httpx and some of its basic usage.
Day 52 comes with a new tool called Subvenkon and a exercise of hackthissite related to .htacces file and directory listing.
Day 51 comes with a writeup source about the $8000 npm token and pretty good reports to learn from [H1-2006 2020] CTF by hipotermia, Bugra Eskici, and Robert...