bugcrowd-bugbounty

star 0

BugCrowd techniques from real resolved reports (Atlassian, Centrify, Skyscanner, Netflix, Segment, Trello, Tesla). Stored XSS via Word .doc javascript: URI in iOS browsers (Atlassian Confluence; .docx does NOT reproduce); CVE-2018-0296 Cisco ASA path traversal unauth (sessions + dir index); Firebase exposure via APK + apktool + /.json check (Skyscanner); default creds on network gear in target ASN (Huawei S7706 admin/admin@huawei.com); missing email domain verification for privilege escalation on B2B SaaS (Segment); stored XSS via SVG in iOS with navigator fingerprinting (Trello iOS); SVG XSS via xlink:href + data URI base64; API keys in APK assets/ via plain unzip (Tesla). Spanish triggers — "bugcrowd", "bug bounty en bugcrowd", "xss en doc", "firebase apk", "cisco asa cve", "credenciales por defecto en red".

omespino By omespino schedule Updated 5/26/2026
play_arrow Run Skill in Manus View GitHub

Skill instructions (SKILL.md) could not be loaded from local cache or raw GitHub repository.

Install via CLI
npx skills add https://github.com/omespino/ai_config --skill bugcrowd-bugbounty
Repository Details
star Stars 0
call_split Forks 0
navigation Branch main
article Path SKILL.md
More from Creator
omespino
omespino Explore all skills →