Target
->
Github APISo what we got?
A developer platform where you can find interesting things to test.
Why?
I wanted to explore how secure private repositories really are.
Bounty Earned
$Undisclosed
How?
IDOR, OAuth Bypass
Tools?
- OAuth Tool
- Burp Suite