ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Episode 8: PostMessage Bugs, CSS Injection, and Bug Drops"
Episode Synopsis
Episode 8: In this episode of Critical Thinking - Bug Bounty Podcast we drop some critical bugs which leak raw credit card info. We also discuss some CSS Injection & PostMessage related techniques. It's a short one but a good one! Don't miss it!Follow us on twitter at: @ctbbpodcastWe're new to this podcasting thing, so feel free to send us any feedback here: [email protected] to YTCracker for the awesome intro music!------ Links ------Follow your hosts Rhynorater & Teknogeek on twitter:https://twitter.com/0xteknogeekhttps://twitter.com/rhynoraterCSS Escape Blog Post:https://mathiasbynens.be/notes/css-escapesRez0’s blog on ChatGPT:https://rez0.blog/hacking/2023/02/21/hacking-with-chatgpt.htmlAll the ways to get a reference to a frame (shoutout to @wcbowling for the article):https://bluepnume.medium.com/every-known-way-to-get-references-to-windows-in-javascript-223778bede2dCSS Painting API:https://developer.mozilla.org/en-US/docs/Web/API/CSS_Painting_APIImport Chaining:https://d0nut.medium.com/better-exfiltration-via-html-injection-31c72a2dae8b
More episodes of the podcast Critical Thinking - Bug Bounty Podcast
Episode 156: Chill AMA from bugbounty.forum
08/01/2026
Episode 155: 2025 Hacker Stats & 2026 Goals
01/01/2026
Episode 153: Hacking the Robots of the Future: Hardware, AI, and Bug Bounties with Matt Brown
18/12/2025
Episode 151: Client-side Advanced Topics
04/12/2025
Episode 150: ASP.NET MVC Patterns, Popping Oracle Identity, and Esoteric Subdomain Enumeration
27/11/2025
Episode 148: MCP Hacking Guide
13/11/2025
Episode 146: Hacking Horror Stories
30/10/2025
In God we trust