writeups

#安全#  Top disclosed reports from HackerOne

  【Hello CTF】题目配套，免费开源的CTF入门教程，针对0基础新手编写，同时兼顾信息差的填补，对各阶段的CTFer都友好的开源教程，致力于CTF和网络安全的开源生态！

  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

翻译 - 🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java 漏洞利用 - 绕过单词阻塞补丁的技巧

  🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337