| Skip to content | https://github.com/bribes/awesome-msrc-writeups#start-of-content |
|
| https://github.com/ |
|
Sign in
| https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fbribes%2Fawesome-msrc-writeups |
| GitHub CopilotWrite better code with AI | https://github.com/features/copilot |
| GitHub Copilot appDirect agents from issue to merge | https://github.com/features/ai/github-app |
| MCP RegistryNewIntegrate external tools | https://github.com/mcp |
| ActionsAutomate any workflow | https://github.com/features/actions |
| CodespacesInstant dev environments | https://github.com/features/codespaces |
| IssuesPlan and track work | https://github.com/features/issues |
| Code ReviewManage code changes | https://github.com/features/code-review |
| GitHub Advanced SecurityFind and fix vulnerabilities | https://github.com/security/advanced-security |
| Code securitySecure your code as you build | https://github.com/security/advanced-security/code-security |
| Secret protectionStop leaks before they start | https://github.com/security/advanced-security/secret-protection |
| Why GitHub | https://github.com/why-github |
| Documentation | https://docs.github.com |
| Blog | https://github.blog |
| Changelog | https://github.blog/changelog |
| Marketplace | https://github.com/marketplace |
| View all features | https://github.com/features |
| Enterprises | https://github.com/enterprise |
| Small and medium teams | https://github.com/team |
| Startups | https://github.com/enterprise/startups |
| Nonprofits | https://github.com/solutions/industry/nonprofits |
| App Modernization | https://github.com/solutions/use-case/app-modernization |
| DevSecOps | https://github.com/solutions/use-case/devsecops |
| DevOps | https://github.com/solutions/use-case/devops |
| CI/CD | https://github.com/solutions/use-case/ci-cd |
| View all use cases | https://github.com/solutions/use-case |
| Healthcare | https://github.com/solutions/industry/healthcare |
| Financial services | https://github.com/solutions/industry/financial-services |
| Manufacturing | https://github.com/solutions/industry/manufacturing |
| Government | https://github.com/solutions/industry/government |
| View all industries | https://github.com/solutions/industry |
| View all solutions | https://github.com/solutions |
| AI | https://github.com/resources/articles?topic=ai |
| Software Development | https://github.com/resources/articles?topic=software-development |
| DevOps | https://github.com/resources/articles?topic=devops |
| Security | https://github.com/resources/articles?topic=security |
| View all topics | https://github.com/resources/articles |
| Customer stories | https://github.com/customer-stories |
| Events & webinars | https://github.com/resources/events |
| Ebooks & reports | https://github.com/resources/whitepapers |
| Business insights | https://github.com/solutions/executive-insights |
| GitHub Skills | https://skills.github.com |
| Documentation | https://docs.github.com |
| Customer support | https://support.github.com |
| Community forum | https://github.com/orgs/community/discussions |
| Trust center | https://github.com/trust-center |
| Partners | https://github.com/partners |
| View all resources | https://github.com/resources |
| GitHub SponsorsFund open source developers | https://github.com/sponsors |
| Security Lab | https://securitylab.github.com |
| Maintainer Community | https://maintainers.github.com |
| Accelerator | https://github.com/accelerator |
| GitHub Stars | https://stars.github.com |
| Archive Program | https://archiveprogram.github.com |
| Topics | https://github.com/topics |
| Trending | https://github.com/trending |
| Collections | https://github.com/collections |
| Enterprise platformAI-powered developer platform | https://github.com/enterprise |
| GitHub Advanced SecurityEnterprise-grade security features | https://github.com/security/advanced-security |
| Copilot for BusinessEnterprise-grade AI features | https://github.com/features/copilot/copilot-business |
| Premium SupportEnterprise-grade 24/7 support | https://github.com/premium-support |
| Pricing | https://github.com/pricing |
| Search syntax tips | https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax |
| documentation | https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax |
|
Sign in
| https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fbribes%2Fawesome-msrc-writeups |
|
Sign up
| https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E&source=header-repo&source_repo=bribes%2Fawesome-msrc-writeups |
| Reload | https://github.com/bribes/awesome-msrc-writeups |
| Reload | https://github.com/bribes/awesome-msrc-writeups |
| Reload | https://github.com/bribes/awesome-msrc-writeups |
|
bribes
| https://github.com/bribes |
| awesome-msrc-writeups | https://github.com/bribes/awesome-msrc-writeups |
| xdavidhu/awesome-google-vrp-writeups | https://github.com/xdavidhu/awesome-google-vrp-writeups |
|
Notifications
| https://github.com/login?return_to=%2Fbribes%2Fawesome-msrc-writeups |
|
Fork
3
| https://github.com/login?return_to=%2Fbribes%2Fawesome-msrc-writeups |
|
Star
36
| https://github.com/login?return_to=%2Fbribes%2Fawesome-msrc-writeups |
|
Code
| https://github.com/bribes/awesome-msrc-writeups |
|
Pull requests
0
| https://github.com/bribes/awesome-msrc-writeups/pulls |
|
Actions
| https://github.com/bribes/awesome-msrc-writeups/actions |
|
Projects
| https://github.com/bribes/awesome-msrc-writeups/projects |
|
Security and quality
0
| https://github.com/bribes/awesome-msrc-writeups/security |
|
Insights
| https://github.com/bribes/awesome-msrc-writeups/pulse |
|
Code
| https://github.com/bribes/awesome-msrc-writeups |
|
Pull requests
| https://github.com/bribes/awesome-msrc-writeups/pulls |
|
Actions
| https://github.com/bribes/awesome-msrc-writeups/actions |
|
Projects
| https://github.com/bribes/awesome-msrc-writeups/projects |
|
Security and quality
| https://github.com/bribes/awesome-msrc-writeups/security |
|
Insights
| https://github.com/bribes/awesome-msrc-writeups/pulse |
| https://github.com/bribes/awesome-msrc-writeups |
| Branches | https://github.com/bribes/awesome-msrc-writeups/branches |
| Tags | https://github.com/bribes/awesome-msrc-writeups/tags |
| https://github.com/bribes/awesome-msrc-writeups/branches |
| https://github.com/bribes/awesome-msrc-writeups/tags |
| 482 Commits | https://github.com/bribes/awesome-msrc-writeups/commits/master/ |
| https://github.com/bribes/awesome-msrc-writeups/commits/master/ |
| .github/workflows | https://github.com/bribes/awesome-msrc-writeups/tree/master/.github/workflows |
| .github/workflows | https://github.com/bribes/awesome-msrc-writeups/tree/master/.github/workflows |
| infra | https://github.com/bribes/awesome-msrc-writeups/tree/master/infra |
| infra | https://github.com/bribes/awesome-msrc-writeups/tree/master/infra |
| README.md | https://github.com/bribes/awesome-msrc-writeups/blob/master/README.md |
| README.md | https://github.com/bribes/awesome-msrc-writeups/blob/master/README.md |
| writeups.csv | https://github.com/bribes/awesome-msrc-writeups/blob/master/writeups.csv |
| writeups.csv | https://github.com/bribes/awesome-msrc-writeups/blob/master/writeups.csv |
| README | https://github.com/bribes/awesome-msrc-writeups |
| https://github.com/bribes/awesome-msrc-writeups#awesome-msrc-writeups |
| Awesome Google VRP Writeups | https://github.com/xdavidhu/awesome-google-vrp-writeups |
| https://github.com/bribes/awesome-msrc-writeups#contributing |
| https://github.com/bribes/awesome-msrc-writeups#writeups |
| https://github.com/bribes/awesome-msrc-writeups#2025 |
| Microsoft 365 Copilot – Arbitrary Data Exfiltration Via Mermaid Diagrams | https://www.adamlogue.com/microsoft-365-copilot-arbitrary-data-exfiltration-via-mermaid-diagrams-fixed/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Adam Logue | https://x.com/Adam_Logue |
| Microsoft Events Leak, Part II: Leaking Event Registration Database Again | https://blog.faav.net/microsoft-events-leak-part-ii |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Faav | https://x.com/efaav |
| Microsoft Events Leak, Part I: Leaking Event Registration and Waitlist Databases | https://blog.faav.net/microsoft-events-leak-part-i |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Faav | https://x.com/efaav |
| One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens | https://dirkjanm.io/obtaining-global-admin-in-every-entra-id-tenant-with-actor-tokens/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Dirk-jan Mollema | https://x.com/_dirkjan |
| Cross-Tenant Access Exploit in Microsoft Entra ID: Breaking Governance with a simple trick | https://medium.com/@bashir69emceeaka5/cross-tenant-access-exploit-in-microsoft-entra-id-breaking-governance-with-a-simple-trick-a06d88fe309e |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Bashir Mohamed (BlackPanther87) | https://x.com/Panther82Black |
| Microsoft Partner Leak: Leaking Microsoft Employee PII and 700M+ Partner Records | https://blog.faav.net/microsoft-partner-leak |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Faav | https://x.com/efaav |
| How a Simple Endpoint Earned Me a $7500 Bounty from Microsoft | https://medium.com/@gourisankara357/how-a-simple-endpoint-earned-me-a-7500-bounty-from-microsoft-1891a35d40be |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Gouri Sankar A | https://x.com/g0w6y |
| How I Found an XSS Vulnerability in a Microsoft subdomain | https://medium.com/@anonymousshetty2003/how-i-found-an-xss-vulnerability-in-a-microsoft-subdomain-4abf0da5c3e9 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Arjun Shetty | https://www.linkedin.com/in/arjun-shetty-255049229/ |
| Break into any Microsoft building: Leaking PII in Microsoft Guest Check-In | https://blog.faav.net/break-into-any-microsoft-building |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Faav | https://x.com/efaav |
| Triple Trouble: Bypassing Sanitization to Steal Microsoft Tokens | https://melotover.medium.com/triple-trouble-bypassing-sanitization-to-steal-microsoft-tokens-d89a68be7ab2 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Asem Eleraky | https://x.com/Melotover |
| Account takeover vulnerability in Azure’s API Management Developer Portal | https://outpost24.com/blog/account-takeover-vulnerability-in-azures-api-management-developer-portal/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Thomas Stacey | https://x.com/t0xodile |
| Unveiling the Secrets: SSRF Adventures in Microsoft’s AI Playground | https://poneglyph.cloud/unveiling-the-secrets-ssrf-adventures-in-microsofts-ai-playground/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| elhabtiesoufiane@gmail.com | https://poneglyph.cloud/author/elhabtiesoufianegmail-com/ |
| Escalating Impact: Full Account Takeover in Microsoft via XSS in Login Flow | https://melotover.medium.com/escalating-impact-full-account-takeover-in-microsoft-via-xss-in-login-flow-f160fa79b008 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Asem Eleraky | https://x.com/Melotover |
| https://github.com/bribes/awesome-msrc-writeups#2024 |
| How I Accessed Microsoft’s ServiceNow — Exposing ALL Microsoft Employee emails, Chat Support Transcripts & Attachments | https://medium.com/@moblig/how-i-accessed-microsofts-servicenow-exposing-all-microsoft-employee-emails-chat-support-5f8d535eb63b |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Moblig | https://x.com/moblig_ |
| From 401 — Unauthorized Access to 3000 $ Bounty from Microsoft. | https://medium.com/@bashir69emceeaka5/from-401-unauthorized-access-to-3000-bounty-from-microsoft-53b086379a08 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Bashir Mohamed (BlackPanther87) | https://x.com/Panther82Black |
| How I got a 5000 $ Bounty from Microsoft | https://medium.com/@bashir69emceeaka5/how-i-got-a-5000-bounty-from-microsoft-fb2e27fd40f7 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Bashir Mohamed (BlackPanther87) | https://x.com/Panther82Black |
| Escalating from Reader to Contributor in Azure API Management | https://binarysecurity.no/posts/2024/09/apim-privilege-escalation |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Christian Håland | https://x.com/christianhland |
| Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing | https://infosecwriteups.com/persistent-xss-vulnerability-on-microsoft-bings-video-indexing-system-a46db992ac7b |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Supakiad S. (m3ez) | https://x.com/Supakiad_Mee |
| Dynamics 365 Business Central - A Journey With Ups and Downs | https://frycos.github.io/vulns4free/2024/07/10/dynamics-ups-and-downs.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Frycos | https://x.com/frycos |
| CVE-2024-20693: Windows cached code signature manipulation | https://sector7.computest.nl/post/2024-06-cve-2024-20693-windows-cached-code-signature-manipulation/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sector7 | https://x.com/sector7_nl |
| These Services Shall Not Pass: Abusing Service Tags to Bypass Azure Firewall Rules (Customer Action Required) | https://www.tenable.com/blog/these-services-shall-not-pass-abusing-service-tags-to-bypass-azure-firewall-rules-customer |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Liv Matan | https://x.com/terminatorLM |
| Multiple vulnerabilities in Eclipse ThreadX | https://security.humanativaspa.it/multiple-vulnerabilities-in-eclipse-threadx/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Marco Ivaldi | https://x.com/0xdea |
| My Hunt: Discovering Microsoft Bugs | https://c0d3x27.medium.com/my-hunt-discovering-microsoft-bugs-f6a9c790bec0 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| c0d3x27 | https://x.com/c0d3x27 |
| Lethal Injection: How We Hacked Microsoft's Healthcare Chat Bot | https://www.breachproof.net/blog/lethal-injection-how-we-hacked-microsoft-ai-chat-bot |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Yanir Tsarimi | https://x.com/Yanir_ |
| JSON CSRF in Microsoft Bing Maps Collections | https://infosecwriteups.com/json-csrf-in-microsoft-bing-maps-collections-74afc2b197d5 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Jayateertha Guruprasad | https://x.com/jayateerthag |
| Azure Devops Zero-Click CI/CD Vulnerability | https://www.legitsecurity.com/blog/azure-devops-zero-click-ci/cd-vulnerability |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Nadav Noy | https://x.com/nadavnoy |
| Unrestricted File Upload Lead to Stored XSS at Microsoft main domain | https://medium.com/@cavdarbashas/unrestricted-file-upload-lead-to-stored-xss-at-microsoft-main-domain-baa9cadac6bd |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sokol Çavdarbasha | https://x.com/sokolicav |
| https://github.com/bribes/awesome-msrc-writeups#2023 |
| 2023 Microsoft Office XSS | https://blog.pksecurity.io/2023/10/04/microsoft-office.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| adm1nkyj1 | https://x.com/adm1nkyj1 |
| Knocking on the Front Door (client side desync attack on Azure CDN) | https://blog.jeti.pw/posts/knocking-on-the-front-door/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Jeti | https://x.com/0xJeti |
| How I Hacked Microsoft Teams and got $150,000 in Pwn2Own | https://speakerdeck.com/masatokinugawa/how-i-hacked-microsoft-teams-and-got-150000-dollars-in-pwn2own |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Masato Kinugawa | https://x.com/kinugawamasato |
| Story of Clickjacking on Microsoft Leads To Privilege Escalation & Account Takeover Of Admin | https://cybersecuritywriteups.com/story-of-clickjacking-in-microsoft-leads-to-privilege-escalation-account-takeover-of-admin-a04453ed47fc |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Abdul Rehman Parkar | https://x.com/abdulrehmanprkr |
| How I found DOM XSS via postMessage on Bing.com - Microsoft Bug Bounty | https://namcoder.com/blog/how-i-found-dom-xss-on-bingcom-microsoft-bug-bounty-write-up/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Nam Le | https://x.com/namcoder_com |
| Two XSS Vulnerabilities in Azure with Embedded postMessage IFrames | https://orca.security/resources/blog/examining-two-xss-vulnerabilities-in-azure-services/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Lidor Ben Shitrit | https://orca.security/resources/author/lidor-ben-shitrit/ |
| Send email from anyone to any(user outlook Microsoft) | https://infosecwriteups.com/send-email-from-anyone-to-any-user-outlook-microsoft-69fce333066d |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Abbas.heybati | https://x.com/abbas_heybati |
| How I Found Stored XSS + HTML Injection Vulnerability on Microsoft | https://cybersecuritywriteups.com/how-i-found-stored-xss-html-injection-vulnerability-on-microsoft-6b8682c03680 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Abdul Rehman Parkar | https://x.com/abdulrehmanprkr |
| Uncovering 3 Azure API Management Vulnerabilities – When Good APIs Go Bad | https://www.tenable.com/blog/uncovering-3-azure-api-management-vulnerabilities-when-good-apis-go-bad |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Liv Matan | https://x.com/terminatorLM |
| XS-Leak: Deanonymize Microsoft Skype Users by any 3rd-party websites | https://infosecwriteups.com/xs-leak-deanonymize-microsoft-skype-users-by-any-3rd-party-website-69849e4501a8 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Jayateertha Guruprasad | https://x.com/jayateerthag |
| 2 XSS on Microsoft | https://medium.com/@nikouei_com/2-xss-on-microsoft-37b6a7efcc84 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Mohammad Nikouei | https://x.com/NikoueiMohammad |
| Super FabriXss: From XSS to an RCE in Azure Service Fabric Explorer by Abusing an Event Tab Cluster Toggle (CVE-2023-23383) | https://orca.security/resources/blog/super-fabrixss-azure-vulnerability/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Lidor Ben Shitrit | https://orca.security/resources/author/lidor-ben-shitrit/ |
| BingBang: AAD misconfiguration led to Bing.com results manipulation and account takeover | https://www.wiz.io/blog/azure-active-directory-bing-misconfiguration |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Hillai Ben-Sasson | https://x.com/hillai |
| Microsoft Azure User Active Directory Invitation Spoofing Vulnerability | https://cybersecuritywriteups.com/azure-user-invitation-spoofing-vulnerability-656cd543b13f |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Abdul Rehman Parkar | https://x.com/abdulrehmanprkr |
| Escalating Privileges with Azure Function Apps | https://www.netspi.com/blog/technical-blog/cloud-penetration-testing/azure-function-apps/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Karl Fosaaen | https://x.com/kfosaaen |
| BlueHat 2023: Catch Me If You Can in the Eyes of Authorization with Cameron Vincent & Sean Hinchee | https://www.youtube.com/watch?v=DlDONiCvtyE |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Cameron Vincent | https://x.com/SecretlyHidden1 |
| How I found DOM-Based XSS on Microsoft MSRC and How they fixed it | https://infosecwriteups.com/how-i-found-dom-based-xss-on-microsoft-msrc-and-how-they-fixed-it-8b71a6020c82 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Supakiad S. (m3ez) | https://x.com/Supakiad_Mee |
| Hacking the Search Bar: The Story of Discovering and Reporting an XSS Vulnerability on Bing.com | https://medium.com/@niraj1mahajan/hacking-the-search-bar-the-story-of-discovering-and-reporting-an-xss-vulnerability-on-bing-com-cac2f241835 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Niraj Mahajan | https://x.com/niraj1mahajan |
| Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms | https://infosecwriteups.com/reflected-xss-leads-to-3-000-bug-bounty-rewards-from-microsoft-forms-efe34fc6b261 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Supakiad S. (m3ez) | https://x.com/Supakiad_Mee |
| How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services | https://orca.security/resources/blog/ssrf-vulnerabilities-in-four-azure-services/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Lidor Ben Shitrit | https://orca.security/resources/author/lidor-ben-shitrit/ |
| https://github.com/bribes/awesome-msrc-writeups#2022 |
| Stored XSS vulnerability in Microsoft booking | https://mtechghost.medium.com/stored-xss-vulnerability-in-microsoft-booking-e593de3344e0 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Mrtechghost | https://x.com/Mrtechghost |
| Microsoft bug reports lead to ranking on Microsoft MSRC Quarterly Leaderboard (Q3 2022) | https://infosecwriteups.com/microsoft-bug-reports-lead-to-ranking-on-microsoft-msrc-quarterly-leaderboard-q3-2022-c6c9f70e2ccd |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Supakiad S. (m3ez) | https://x.com/Supakiad_Mee |
| Blind SSRF in Skype (Microsoft) | https://infosecwriteups.com/blind-ssrf-in-skype-microsoft-6639f4961052 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Jayateertha Guruprasad | https://x.com/jayateerthag |
| $6000 with Microsoft Hall of Fame | Microsoft Firewall Bypass | CRLF to XSS | Microsoft Bug Bounty | https://infosecwriteups.com/6000-with-microsoft-hall-of-fame-microsoft-firewall-bypass-crlf-to-xss-microsoft-bug-bounty-8f6615c47922 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Neh Patel | https://x.com/thecyberneh |
| New technique 403 bypass lyncdiscover.microsoft.com | https://infosecwriteups.com/403-bypass-lyncdiscover-microsoft-com-db2778458c33 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Abbas.heybati | https://x.com/abbas_heybati |
| Let's Dance in the Cache - Destabilizing Hash Table on Microsoft IIS! | https://blog.orange.tw/posts/2022-08-lets-dance-in-the-cache-destabilizing-hash-table-on-microsoft-iis/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Orange Tsai | https://x.com/orange_8361 |
| Reading Message from Microsoft’s Private Yammer Group | https://mearegtu.medium.com/reading-message-from-microsofts-private-yammer-group-6be844639bca |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Meareg | https://mearegtu.medium.com/ |
| Microsoft Teams — Cross Site Scripting (XSS) Bypass CSP | https://medium.com/@numanturle/microsoft-teams-stored-xss-bypass-csp-8b4a7f5fccbf |
| * | https://github.com/bribes/awesome-msrc-writeups |
| numanturle | https://x.com/numanturle |
| Microsoft Dynamics Container Sandbox RCE via Unauthenticated Docker Remote API 20,000$ Bounty | https://hencohen10.medium.com/microsoft-dynamics-container-sandbox-rce-via-unauthenticated-docker-remote-api-20-000-bounty-7f726340a93b |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Chen Cohen | https://x.com/chencococococo |
| Microsoft Cloud Security Research – Public Disclosure – Gaining Unlimited access to graph AuditLogs endpoint using complex filters with non-privileged user account | https://securecloud.blog/2022/04/21/microsoft-cloud-security-research-public-disclosure-gaining-unlimited-access-to-graph-auditlogs-endpoint-using-complex-filters-with-non-privileged-user-account/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Joosua Santasalo | https://x.com/santasalojoosua |
| Insecure Direct Object Reference Exposes all users of Microsoft Azure Independent Software Vendors | https://mearegtu.medium.com/insecure-direct-object-reference-exposes-all-users-of-microsoft-azure-independent-software-vendors-bed3b45e509 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Meareg | https://mearegtu.medium.com/ |
| I have Found Microsoft Subdomain Website database list, database username, password | https://medium.com/@botami143/i-have-found-microsoft-subdomain-website-database-list-database-username-password-1dab07d0c8ea |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Bot Ami | https://x.com/Botami143 |
| Escalating from Logic App Contributor to Root Owner in Azure | https://www.netspi.com/blog/technical-blog/cloud-penetration-testing/azure-logic-app-contributor-escalation-to-root-owner/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Josh Magri | https://www.netspi.com/authors/josh-magri/ |
| AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service | https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Yanir Tsarimi | https://x.com/Yanir_ |
| First Valid BUG Finding At Microsoft And I Got the Acknowledgments Page Microsoft | https://aidilarf.medium.com/first-valid-bug-finding-at-microsoft-and-i-got-the-acknowledgments-page-microsoft-a2c185c53074 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Aidil Arief | https://aidilarf.medium.com/ |
| I FOUND information disclosure Vulnerability at Microsoft Subdomain | https://medium.com/@botami143/i-found-idor-vulnerability-at-microsoft-subdomain-b89b8777bf8d |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Bot Ami | https://x.com/Botami143 |
| https://github.com/bribes/awesome-msrc-writeups#2021 |
| Improper Authorization could allow access to more than 100,000 Microsoft Dynamics 365 for Partner Users | https://mearegtu.medium.com/broken-access-control-cc6cfd793b15 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Meareg | https://mearegtu.medium.com/ |
| Remote Deserialization Bug in Microsoft's RDP Client through Smart Card Extension (CVE-2021-38666) | https://blog.thalium.re/posts/deserialization-bug-through-rdp-smart-card-extension/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Valentino Ricotta | https://x.com/face0xff |
| Microsoft Azure Portal – Persistent Cross-Site Scripting | https://www.y-security.de/news-en/microsoft-azure-portal-persistent-cross-site-scripting/index.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Y-Security | https://x.com/ysecurity |
| Escalating Azure Privileges with the Log Analytics Contributor Role | https://www.netspi.com/blog/technical-blog/cloud-penetration-testing/escalating-azure-privileges-with-the-log-analystics-contributor-role/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Karl Fosaaen | https://x.com/kfosaaen |
| Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances | https://unit42.paloaltonetworks.com/azure-container-instances/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Yuval Avrahami | https://x.com/yuvalavra |
| Critical Vulnerability in Microsoft Azure Cosmos DB | https://chaosdb.wiz.io/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Wiz | https://x.com/wiz_io |
| How We Are Able To Hack Any Company By Sending Message – $20,000 Bounty [CVE-2021–34506] | https://blog.cyberxplore.com/how-we-are-able-to-hack-any-company-by-sending-message-20000-bounty-cve-2021-34506/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Th3Pr0xyB0y | https://x.com/th3pr0xyb0y |
| Active Directory forest trusts part 2 - Trust transitivity and finding a trust bypass | https://dirkjanm.io/active-directory-forest-trusts-part-two-trust-transitivity/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Dirk-jan Mollema | https://x.com/_dirkjan |
| Reflected XSS on Microsoft | https://n45ht.or.id/blog/reflected-xss-on-microsoft/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Choirur Rizal | https://n45ht.or.id/blog/author/choirurrizal/ |
| How I Might Have Hacked Any Microsoft Account | https://thezerohack.com/how-i-might-have-hacked-any-microsoft-account |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Laxman Muthiyah | https://x.com/laxmanmuthiyah |
| I Own your Cloud Shell: Taking over “Azure Cloud Shell” Kubernetes Cluster Through Unsecured Kubelet API 30,000$ Bounty | https://hencohen10.medium.com/i-own-your-cloud-shell-taking-over-azure-cloud-shell-kubernetes-cluster-through-unsecured-558621519cf9 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Chen Cohen | https://x.com/chencococococo |
| $10,000 for automatic email confirmation bug in Microsoft’s Edge browser | https://0xkaran.medium.com/10-000-for-automatic-email-confirmation-bug-in-microsofts-edge-browser-22f15ceccb4a |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Karan Chaudhary | https://x.com/0xkaran |
| Unauthorized Access to OData Entities + $2K Bounty From Microsoft | https://infosecwriteups.com/unauthorized-access-to-odata-entities-2k-bounty-from-microsoft-e070b2ef88c2 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Borna Nematzadeh | https://x.com/LogicalHunter |
| https://github.com/bribes/awesome-msrc-writeups#2020 |
| Microsoft Bug Bounty Writeup – Stored XSS Vulnerability | https://www.pethuraj.com/blog/microsoft-bug-bounty-writeup-stored-xss-vulnerability/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Pethuraj | https://x.com/Pethuraj |
| Taking Over Files in a chat —IDOR in Microsoft Teams | https://medium.com/@alyanwar/taking-over-files-in-a-chat-idor-in-microsoft-teams-e5289c2efd0 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Aly Anwar | https://x.com/alyanwarr |
| How I got hall of fame in Microsoft | https://medium.com/@noneofyou/how-i-got-hall-of-fame-in-microsoft-9b507dec3860 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Akash basnet | https://medium.com/@noneofyou |
| Taking over Azure DevOps Accounts with 1 Click | https://www.assetnote.io/resources/research/taking-over-azure-devops-accounts-with-1-click |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sean Yeoh | https://x.com/seanyeoh |
| iOS Outlook Stored XSS Write-Up($3000) | https://medium.com/kminthein/ios-outlook-stored-xss-write-up-ce34d7da192b |
| * | https://github.com/bribes/awesome-msrc-writeups |
| kminthein | https://medium.com/@kminthein |
| Reflected XSS on microsoft.com subdomains | https://infosecwriteups.com/reflected-xss-on-microsoft-com-subdomains-4bdfc2c716df |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Raimonds Liepins | https://raimonds-29140.medium.com |
| My Weirdest Bug Bounty — Getting PII from O365. | https://omaidfaizyar.medium.com/my-weirdest-bug-bounty-getting-pii-from-o365-b4477f4739e |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Omaid Faizyar | https://omaidfaizyar.medium.com/ |
| Reflected XSS on Microsoft.com via Angular Js template injection | https://infosecwriteups.com/reflected-xss-on-microsoft-com-via-angular-template-injection-2e26d80a7fd8 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Pratik Dabhi | https://x.com/impratikdabhi |
| Cross Site Request Forgery vulnerability Leads to User Profile Change in Microsoft Express Logic | https://ad3sh.medium.com/cross-site-request-forgery-vulnerability-leads-to-user-profile-change-in-microsoft-express-logic-dc3481ab47ba |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Adesh Kolte | https://x.com/AdeshKolte |
| Saying Goodbye to my Favorite 5 Minute | https://www.allysonomalley.com/2020/01/06/saying-goodbye-to-my-favorite-5-minute-p1/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Allyson O'Malley | https://x.com/ally_o_malley |
| https://github.com/bribes/awesome-msrc-writeups#2019 |
| Discovering an Undisclosed Stack Overflow Vulnerability in Microsoft SQL Server (CVE-2019-1068) | https://cems.fun/2021/02/06/cve-2019-1068.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| cem | https://x.com/cemonatk |
| Chaining Three Bugs to Get RCE in Microsoft AttackSurfaceAnalyzer | https://parsiya.net/blog/2019-06-18-chaining-three-bugs-to-get-rce-in-microsoft-attacksurfaceanalyzer/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Parsia Hakimian | https://x.com/CryptoGangsta |
| Stored XSS on Techprofile Microsoft | https://medium.com/@kang_ali/stored-xss-on-techprofile-microsoft-d21757588cc1 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Mohammad Ali Syarief | https://medium.com/@kang_ali |
| From http:// domain to res:// domain xss by using IE Adobe’s PDF ActiveX plugin | https://80vul.medium.com/from-http-domain-to-res-domain-xss-by-using-ie-adobes-pdf-activex-plugin-9f2a72a87aff |
| * | https://github.com/bribes/awesome-msrc-writeups |
| heige | https://x.com/80vul |
| $1,000 USD, XSS STORED IN OUTLOOK.COM (IOS BROWSERS) | https://omespino.com/write-up-1000-usd-in-5-minutes-xss-stored-in-outlook-com-ios-browsers/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Omar Espino | https://x.com/omespino |
| Remote Code Execution via Path Traversal in the Device Metadata Authoring Wizard | https://posts.specterops.io/remote-code-execution-via-path-traversal-in-the-device-metadata-authoring-wizard-a0d5839fc54f |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Lee Chagolla-Christensen | https://x.com/tifkin_ |
| https://github.com/bribes/awesome-msrc-writeups#2018 |
| Microsoft CSRF Vulnerability | https://ad3sh.medium.com/how-i-got-500-from-microsoft-for-csrf-vulnerability-700accaf48b9 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Adesh Kolte | https://x.com/AdeshKolte |
| How I was able to delete 13k+ Microsoft Translator projects | https://haiderm.com/how-i-was-able-to-delete-13k-microsoft-translator-projects/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Haider Mahmood | https://haiderm.com/whoami/ |
| XSS in Microsoft subdomain | https://sudhanshur705.medium.com/xss-in-microsoft-subdomain-81c4e46d6631 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sudhanshu Rajbhar | https://twitter.com/sudhanshur705 |
| Xss in Microsoft | https://medium.com/@hacker_eth/xss-in-microsoft-7a70416aee75 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| hacker_eth | https://medium.com/@hacker_eth |
| Bypass CSP by Abusing XSS Filter in Edge | https://infosecwriteups.com/bypass-csp-by-abusing-xss-filter-in-edge-43e9106a9754 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Xiaoyin Liu | https://x.com/general_nfs |
| https://github.com/bribes/awesome-msrc-writeups#2017 |
| Microsoft SharePoint’s Follow Feature XSS (CVE-2017–8514) -Adesh Kolte | https://ad3sh.medium.com/microsoft-sharepoints-follow-feature-xss-cve-2017-8514-adesh-kolte-d78d701cd064 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Adesh Kolte | https://x.com/AdeshKolte |
| Get your Microsoft account hijacked by simply clicking connect button -Adesh Kolte | https://ad3sh.medium.com/get-your-microsoft-account-hijacked-by-simply-clicking-connect-button-adesh-kolte-cc0b335b0221 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Adesh Kolte | https://x.com/AdeshKolte |
| Non-persistent XSS at Microsoft -Adesh Kolte | https://ad3sh.medium.com/non-persistent-xss-at-microsoft-adesh-kolte-ad36b1b4a325 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Adesh Kolte | https://x.com/AdeshKolte |
| Uncovering a Bug I Found in Outlook: How Could an Account Has Been Compromised? | https://cems.fun/2022/12/26/CVE-2017-8758.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| cem | https://x.com/cemonatk |
| DOM Based XSS In Microsoft | https://www.rafaybaloch.com/2017/06/dom-based-xss-in-microsoft.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Rafay Baloch | https://x.com/rafaybaloch |
| https://github.com/bribes/awesome-msrc-writeups#2016 |
| Remote Code Execution (RCE) on Microsoft's 'signout.live.com' | https://www.kernelpicnic.net/2016/07/24/Microsoft-signout.live.com-Remote-Code-Execution-Write-Up.html |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Peter Adkins | https://x.com/darkarnium |
| Two vulnerabilities makes an Exploit!! (XSS and CSRF in Bing) | https://infosecwriteups.com/two-vulnerabilities-makes-an-exploit-xss-and-csrf-in-bing-cd4269da7b69 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sai Krishna Kothapalli | https://x.com/kmskrishna |
| Microsoft Yammer Clickjacking - Exploiting HTML5 Security Features | https://seekurity.com/blog/2016/05/18/admin/general/microsoft-yammer-clickjacking-exploiting-html5-security-features |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Mohamed A. Baset | https://seekurity.com/blog/author/admin |
| Obtaining Login Tokens for an Outlook, Office or Azure Account | https://whitton.io/articles/obtaining-tokens-outlook-office-azure-account/ |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Jack | https://x.com/fin1te |
| Broken Access Control in bingmapsportal | https://infosecwriteups.com/broken-access-control-in-bingmapsportal-a012bffd2c43 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sai Krishna Kothapalli | https://x.com/kmskrishna |
| https://github.com/bribes/awesome-msrc-writeups#2015 |
| Leaking API keys in Bing Maps Portal | https://infosecwriteups.com/how-i-got-listed-in-microsoft-hall-of-fame-8f96ca4535c2 |
| * | https://github.com/bribes/awesome-msrc-writeups |
| Sai Krishna Kothapalli | https://x.com/kmskrishna |
|
microsoft
| https://github.com/topics/microsoft |
|
cybersecurity
| https://github.com/topics/cybersecurity |
|
bug-bounty
| https://github.com/topics/bug-bounty |
|
writeups
| https://github.com/topics/writeups |
|
bugbounty
| https://github.com/topics/bugbounty |
|
writeup
| https://github.com/topics/writeup |
|
msrc
| https://github.com/topics/msrc |
|
Readme
| https://github.com/bribes/awesome-msrc-writeups#readme-ov-file |
| Please reload this page | https://github.com/bribes/awesome-msrc-writeups |
|
Activity | https://github.com/bribes/awesome-msrc-writeups/activity |
|
3
forks | https://github.com/bribes/awesome-msrc-writeups/forks |
|
Report repository
| https://github.com/contact/report-content?content_url=https%3A%2F%2Fgithub.com%2Fbribes%2Fawesome-msrc-writeups&report=bribes+%28user%29 |
| Contributors | https://github.com/bribes/awesome-msrc-writeups/graphs/contributors |
| Please reload this page | https://github.com/bribes/awesome-msrc-writeups |
|
| https://github.com |
| Terms | https://docs.github.com/site-policy/github-terms/github-terms-of-service |
| Privacy | https://docs.github.com/site-policy/privacy-policies/github-privacy-statement |
| Security | https://github.com/security |
| Status | https://www.githubstatus.com/ |
| Community | https://github.community/ |
| Docs | https://docs.github.com/ |
| Contact | https://support.github.com?tags=dotcom-footer |