{"html":"","categories":["Bug Bounty"],"published":"2022-05-20 20:12:09","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","width":"100%","blog_url":"https://cysec148.hatenablog.com/","author_name":"ThisIsOne","provider_url":"https://hatena.blog","title":"C.S.T.I Lead To Account Takeover $$$\u3092\u8a33\u3057\u3066\u307f\u305f","type":"rich","blog_title":"Shikata Ga Nai","provider_name":"Hatena Blog","height":"190","url":"https://cysec148.hatenablog.com/entry/2022/05/20/201209","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/T/ThisIsOne/20220520/20220520193646.png","description":"Hello there, ('\u03c9')\u30ce C.S.T.I\u304c\u30a2\u30ab\u30a6\u30f3\u30c8\u306e\u4e57\u3063\u53d6\u308a\u306b\u3064\u306a\u304c\u308b\u3092\u3002 \u8106\u5f31\u6027\uff1a CSTI \u30a2\u30ab\u30a6\u30f3\u30c8\u306e\u4e57\u3063\u53d6\u308a \u8a18\u4e8b\uff1a https://systemweakness.com/c-s-t-i-lead-to-account-takeover-f21ea07d9141 \u306f\u3058\u3081\u306b\u5075\u5bdf\u3059\u308b\u305f\u3081\u306b131\u306e\u30c9\u30e1\u30a4\u30f3\u3092\u6301\u3063\u3066\u3044\u305f\u306e\u3067\u3002 \u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u5217\u6319\u306b\u5bfe\u3057\u3066\u30af\u30a4\u30c3\u30af\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3059\u308b\u3053\u3068\u306b\u3002 subfinder \u3001findomain\u3001amass\u3001assetfinder\u3092\u4f7f\u7528\u3057\u3066\u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u3092\u691c\u7d22\u3057\u3066\u3002 deduplicated\u3092\u4f7f\u7528\u3057\u3066\u91cd\u8907\u3092\u524a\u9664\u3057\u3001httpx\u30922\u56de\u4f7f\u7528\u3057\u3066\u3002 htt\u2026","version":"1.0"}