Day 25 comes with a simple exploring on topics related to Server Site Template Injection (SSTI) and S3 buckets misconfiguration by parts.
Day 24 comes with a small contribution related to account takeovers and API keys.
After looking new resources of learning and methods, seemed to be easier to learn from real world examples such as write ups and also by practicing in differ...
Day 22 comes with attacks to Json Web Token and API Testing!
Day 21 comes with JWT tokens and cool forgotten password functions!