Matan-h

Matan-h

About:

Matan-h is a programmer interested in cybersecurity, music, and photography, with skills in Python, Rust, and JavaScript.

Website:

matan-h.com

Specializations:

Programmer Cybersecurity Expert Web Developer

Interests:

Programming Cybersecurity Music Abstract photography

Incoming Links:

Teodor J. Podobnik
Subscribe to RSS:
Link

0Intel Suspicious XSS

2025-03-16 web development intel bug bounty cross-site scripting

The author discovered a suspicious XSS on the Intel.com website while browsing the homepage. The XSS is live and the author provides a solution to bypass the WAF and find the XSS. The author also mentions that Intel doesn't provid...

0History Game

2024-11-24

The author created a game using CSS Pseudo-class :visited to detect popular websites the user has visited. The game involves catching falling objects, with the color of the object indicating if the user has visited the correspondi...

0Google has SSRF - now

2024-05-16

The author discovered SSRF vulnerability in Google's no-code app builder, Appsheet.com, which allows users to connect to a remote database. The author experimented with the OData and On-premises Database options and found that SSR...

0Common Google XSS

2024-05-06

The article discusses an SSRF vulnerability in the Google website https://toolbox.googleapps.com, which allowed the author to perform an open redirect to XSS attack by manipulating URL parameters. The author reported the vulnerabi...

0Google has another secret browser

2024-02-02

The text discusses the discovery of a secret browser inside Google Play Services that can be accessed through a link, bypassing parental controls and lock-down mode. It provides a detailed guide on how to access the browser and ex...

0Build a quick and private online converter

2023-12-08

The author discusses the need for a private online media converter and the challenges faced with existing converters. They explain the process of building a serverless converter using FFmpeg and WebAssembly, and provide code snipp...

0I analyzed stackoverflow

2023-11-15

The author analyzed StackOverflow to find leaked information, and discovered that there are a lot of leaks in the platform. Most of the leaked data is old and requires additional information to be useful. The author found valid Gi...

0Moving from WordPress to Jekyll

2023-10-30

The author discusses the reasons for moving from WordPress to Jekyll, including dissatisfaction with the plugin ecosystem, security concerns, and the benefits of static sites. They also detail the challenges of setting up a static...

0How to set up a development environment in Android

2023-08-23

The text explains how to set up a development environment in Android using Termux, a file manager, a graphical file editor, and AndroidIDE. It provides detailed instructions for installing and setting up Termux, including useful u...

0One LFI bypass to rule them all (using base64)

2023-07-20

The text discusses an LFI bypass using base64 on a PHP website. The author found an LFI and reported it to the site owner, who blocked PHP start and end tags. The author then found a way to bypass this block using PHP filter chain...

0Google has a secret browser hidden inside the settings

2023-06-26

The author discovered a secret browser located inside the 'Manage my account' popup that Android has in various apps. The browser bypasses parental control and can be accessed through the 'Security' tab. The author reported this t...