InfoSec Write-ups

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties…

Follow publication

Member-only story

Hack Stories: Hacking Hackers EP:3

The Cybersecurity World is Not As Big As You May Think

c0d3x27
InfoSec Write-ups
Published in
9 min readApr 24, 2024

too much light..

Disclaimer: You should start by reading here:

Intro

Let’s rewind to EP:1, where I previously mentioned that embarking on your journey to land your first job as a Cybersecurity Consultant involves interacting with a diverse array of people and companies. In today’s narrative, Opinium and Tesla take center stage, revealing how I stumbled upon four Remote Code Execution (RCE) vulnerabilities (two with root privileges), The last two discovered about 15 days ago, a zero-day exploit in one of their custom software, BFLA, Vertical PE, as well as Insecure Direct Object References (IDORs), and more.

Obviously Fake Names:

  • Opinium: Just a staffing Agency
  • Tesla: One of the two most important electricity companies in a Western European country, even though there are seven in total.

The Back Story

Create an account to read the full story.

The author made this story available to Medium members only.
If you’re new to Medium, create a new account to read this story on us.

Or, continue in mobile web

Already have an account? Sign in

Published in InfoSec Write-ups

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and CTFs to vulnhub machines, hardware challenges and real life encounters. Subscribe to our weekly newsletter for the coolest infosec updates: https://weekly.infosecwriteups.com/

Written by c0d3x27

OSCP || OSWE || CompTIA CYSA+, Sec+, A+, ITF+, CSAP | | 0-day Researcher | | Security Consultant

Responses (4)

Write a response

I'm curious how you learned all this stuff.
Do you have books, blogs, courses, anything really... that you can point people at to start learning by chance??

--

If you need a reliable hacker who will never delay your work and give you result within few hours contact kelvinethicalhcaker@gmail.Com, he can hack any device phone without the person knowing the phone has been hacked, If you needed a concrete…

--

This really was a good read. Nice work and waiting for more.

--