{
  "trx_id": "8f5d48c1cc33dc5413b2a6b394e4b6af5496262e",
  "block": 34983145,
  "trx_in_block": 9,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2019-07-25T22:43:57",
  "op": [
    "comment",
    {
      "parent_author": "mabdullah22",
      "parent_permlink": "i-own-your-customers",
      "author": "steemitboard",
      "permlink": "steemitboard-notify-mabdullah22-20190725t224357000z",
      "title": "",
      "body": "Congratulations @mabdullah22! You received a personal award!\n\n<table><tr><td>https://steemitimages.com/70x70/http://steemitboard.com/@mabdullah22/birthday1.png</td><td>Happy Birthday! - You are on the Steem blockchain for 1 year!</td></tr></table>\n\n<sub>_You can view [your badges on your Steem Board](https://steemitboard.com/@mabdullah22) and compare to others on the [Steem Ranking](https://steemitboard.com/ranking/index.php?name=mabdullah22)_</sub>\n\n\n###### [Vote for @Steemitboard as a witness](https://v2.steemconnect.com/sign/account-witness-vote?witness=steemitboard&approve=1) to get one more award and increased upvotes!",
      "json_metadata": "{\"image\":[\"https://steemitboard.com/img/notify.png\"]}"
    }
  ]
}

{
  "trx_id": "2e09c1c1c5e9e3a559711107ab1630a1ff8e2cb8",
  "block": 25615562,
  "trx_in_block": 47,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-09-02T19:24:51",
  "op": [
    "vote",
    {
      "voter": "ax3",
      "author": "mabdullah22",
      "permlink": "i-own-your-customers",
      "weight": 100
    }
  ]
}

{
  "trx_id": "1d052c849baa3e35580257e42f973ed75c4e8263",
  "block": 25615559,
  "trx_in_block": 0,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-09-02T19:24:42",
  "op": [
    "comment",
    {
      "parent_author": "",
      "parent_permlink": "blockchain",
      "author": "mabdullah22",
      "permlink": "i-own-your-customers",
      "title": "I Own Your Customers !!!",
      "body": "Hi\nThis is my second write-up related to cryptoExchange Hacks.Last time I hacked an Exchange using IDOR vulnerability in Password Reset Function(Writeup here). This time it was something very interesting which I found.This lead me to access all the KYC documents of Users.\n\n# Background Story:\nSo these days I am not doing hunting much ,rather I am learning DPDK(Data Plane Development Kit) which is a Development kit by Intel to do fast packet processing.As much tutorials are not available on this so one has to goto whole documentation to learn.Btw Intel has a very Good documentation on DPDK.So fed up with reading documentation ,I wanted to relax myself.Earning some bounties was the way :p\n\nSo Basically I got access to all the KYC documents of Users of two projects by accessing the s3 Buckets.I will not be disclosing the names of the project.But one is a CryptoExchange with a good volume.Other is a Blockchain project backed by some reputable names in Crypto community.\n\n# 1.Blockchain Project\nEvery time I start testing a website.My first step is to do recon on it as everyone does.So I fired up my subdomain recon scripts and found the following.\n\n![subdomains.PNG](https://cdn.steemitimages.com/DQmRW9MQJzX2ikFDbDE3cyqDzH2CiGxSBB7ham1T2irEjsC/subdomains.PNG)\n\nThe one which looked interesting to me was (120185.xyz.com). Turns out this was the admin panel of the website.So I started trying to bypass the admin panel with different tricks.I don’t have the screenshot of Admin panel right now as they have taken it down.So after trying for an hour hopelessly I turned to Burp to see the site’s spidered structure.I started reading the js files which were accessible on the panel.\n\nhttps://120185.xyz.com/js/app-1eda861a990702514571.bundle.js\n\nWhile reading the file I found this.\n\n![b1.PNG](https://cdn.steemitimages.com/DQmPkJJLkf9SM12Ly1kq6nP32AryGBbJrhg1hCZQAbYQMru/b1.PNG)\n\nThis got my attention and I searched for keyword bucket.And what I found shocked me.Hardcoded AWS credentials of a bucket.\n\n![b2.PNG](https://cdn.steemitimages.com/DQmSzhQ1F6Dee3CFmScEQMY5Q5CVp8yK4d8Ar1txbY6bsKQ/b2.PNG)\n\nI used the credentials to access the S3 bucket.User Kyc docs were uploaded into the bucket.I had access to thousand of KYC Docs.\n\n![aws.PNG](https://cdn.steemitimages.com/DQmTaGk5aUVizmJ5oB4DybyUXJ7iahz4JDEqC41pruEQuX4/aws.PNG)\n\nI didn’t downloaded any Doc being Ethical.And reported it to organization ASAP.They quickly implemented the fix.\n\n## Takeaways:\n-Always read the Javascript files ,you might get lucky.\n\n## Timeline:\nAugust 29.2018 12:57 PM -> Report Sent\nAugust 29,2018 7:30 PM ->Checked and Bug is Fixed\n\n# 2.CryptoExchange\nI guess this is one of the easiest bug I found and was handsomely rewarded.I won’t be disclosing the exchange name ,lets call it vuln.com.\n\nI had no intentions of hunting this exchange.I visited this exchange to see the exchange rate of a token in which I had invested.Out of now where I opened the source code of the exchange.And I found this.\n\n![srcode.PNG](https://cdn.steemitimages.com/DQmeapaM9aMuCTzPk2XjG7pvTcTBJ9vjRteWUYBqjucFPrY/srcode.PNG)\n\nUpon viewing this my inside Hacker instinct got awaken.And I opened the s3 bucket.The bucket was readable.What I found next was astonishing.Whole KYC Documents here too.Plus support ticket documents too.\n\n![list buckets.png](https://cdn.steemitimages.com/DQmfUHVDNifMvxwfkv8XSGJYpfgBCXsEKZ4zi7SazJoDJdt/list%20buckets.png)\n\n![identity_docs.png](https://cdn.steemitimages.com/DQmagavSNFrxjZCfmtyMZT6ws4dgKtW7nKkWiRUoSgANmUv/identity_docs.png)\n\n![email.PNG](https://cdn.steemitimages.com/DQmcDZaPGDaN82N6HBR9UhADjDcmzcamHc778uASe5DBdtX/email.PNG)\n\n## Take Away:\n~Do look at the source code.\n~Always Check the Buckets you never know what juicy info you can get.\n\n## Timeline:\nAugust 30,2018 1:12 PM -> Report sent\nAugust 30,2018 4:00 PM -> Bug Fixed\nAugust 30,2018 5:07PM -> Bounty Rewarded (10 ETH)",
      "json_metadata": "{\"tags\":[\"blockchain\",\"cryptoexchange\",\"crypto\",\"hacking\",\"security\"],\"image\":[\"https://cdn.steemitimages.com/DQmRW9MQJzX2ikFDbDE3cyqDzH2CiGxSBB7ham1T2irEjsC/subdomains.PNG\",\"https://cdn.steemitimages.com/DQmPkJJLkf9SM12Ly1kq6nP32AryGBbJrhg1hCZQAbYQMru/b1.PNG\",\"https://cdn.steemitimages.com/DQmSzhQ1F6Dee3CFmScEQMY5Q5CVp8yK4d8Ar1txbY6bsKQ/b2.PNG\",\"https://cdn.steemitimages.com/DQmTaGk5aUVizmJ5oB4DybyUXJ7iahz4JDEqC41pruEQuX4/aws.PNG\",\"https://cdn.steemitimages.com/DQmeapaM9aMuCTzPk2XjG7pvTcTBJ9vjRteWUYBqjucFPrY/srcode.PNG\",\"https://cdn.steemitimages.com/DQmfUHVDNifMvxwfkv8XSGJYpfgBCXsEKZ4zi7SazJoDJdt/list%20buckets.png\",\"https://cdn.steemitimages.com/DQmagavSNFrxjZCfmtyMZT6ws4dgKtW7nKkWiRUoSgANmUv/identity_docs.png\",\"https://cdn.steemitimages.com/DQmcDZaPGDaN82N6HBR9UhADjDcmzcamHc778uASe5DBdtX/email.PNG\"],\"links\":[\"https://120185.xyz.com/js/app-1eda861a990702514571.bundle.js\"],\"app\":\"steemit/0.1\",\"format\":\"markdown\"}"
    }
  ]
}

{
  "trx_id": "0000000000000000000000000000000000000000",
  "block": 24697020,
  "trx_in_block": 4294967295,
  "op_in_trx": 0,
  "virtual_op": 23,
  "timestamp": "2018-08-01T21:38:24",
  "op": [
    "author_reward",
    {
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "sbd_payout": "0.010 SBD",
      "steem_payout": "0.018 STEEM",
      "vesting_payout": "52.693168 VESTS"
    }
  ]
}

{
  "trx_id": "3dba2d5341a148c149d2d5920163b16006cd1988",
  "block": 24554595,
  "trx_in_block": 51,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T22:32:33",
  "op": [
    "comment",
    {
      "parent_author": "mabdullah22",
      "parent_permlink": "feeding-yourself-is-hard-old-man-in-a-market",
      "author": "photocontests3",
      "permlink": "re-feeding-yourself-is-hard-old-man-in-a-market-20180727t223229",
      "title": "",
      "body": "<b>World of Photography</b><br><a href=\"http://worldofphotography.org\">>Visit the website<</a><br><br>You have earned <b>6.50 XP</b> for sharing your photo! <br><table><tr><td><b>Daily Stats</b><br>Daily photos: 1/2 <br> Daily comments: 0/5<br>Multiplier: 1.30<br><sub>Block time: 2018-07-27T22:31:33</sub></td><td><b>Account Level: 0</b><br>Total XP: 6.50/100.00<br>Total Photos: 1<br>Total comments: 0<br> Total contest wins: 0</td></tr></table>When you reach level 1 you will start receiving up to two daily upvotes<br><br> <b>Follow:</b> @photocontests<br><b>Join the Discord channel:</b> <a href=\"https://discord.gg/2pmd5Dr\">click!</a><br><b>Play and win SBD: </b>@fairlotto<br><b>Daily Steem Statistics: </b>@dailysteemreport<br><b>Learn how to program Steem-Python applications: </b>@steempytutorials<br><b>Developed and sponsored by:</b> @juliank",
      "json_metadata": ""
    }
  ]
}

{
  "trx_id": "21b830ffd9a5aaa61a83505de921b6a72886168d",
  "block": 24554574,
  "trx_in_block": 43,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T22:31:30",
  "op": [
    "comment",
    {
      "parent_author": "",
      "parent_permlink": "streetphotography",
      "author": "mabdullah22",
      "permlink": "feeding-yourself-is-hard-old-man-in-a-market",
      "title": "Feeding Yourself is Hard : Old man in a market",
      "body": "From the photograph it is clear that its Afternoon.A man caring boxes on his back in the scorching heat of sun.The old man looks in his 70s.A age where he should he resting in his home.Rather he is picking boxes on his weak back in market.\n\n ![DSC_0111.jpg](https://cdn.steemitimages.com/DQmdwhQ6fLCWvBXxCh4q1q5CdjotWGSx3e983fB6vofjrqz/DSC_0111.jpg)\n\nHunger makes you do anything.And earning money is hard.In Pakistan the average salary of a Daily Labor is around 300-500 Rupees ,that's around 3-4 USD. You can imagine how hard it can be for labor to feed himself and his family.And sometimes they don't get work at all.\n\n![DSC_0110.jpg](https://cdn.steemitimages.com/DQmTKqQgjqc4e6xfCAxZPNazCxcx3adBqK1rPt4J21eMnoV/DSC_0110.jpg)\n\n![DSC_0107.jpg](https://cdn.steemitimages.com/DQmNjuFMbfRA3JM4U2SwPZjn5JbLqbKoATiercokhPFKWyg/DSC_0107.jpg)\n\n\n\n## Location\nThese photograph were taken at a Local market in Rawalpindi ,Pakistan.\n\n## Equipment\nNikon D7100\n17-140 mm Lens",
      "json_metadata": "{\"tags\":[\"streetphotography\",\"photography\",\"photo\",\"life\",\"pakistan\"],\"image\":[\"https://cdn.steemitimages.com/DQmdwhQ6fLCWvBXxCh4q1q5CdjotWGSx3e983fB6vofjrqz/DSC_0111.jpg\",\"https://cdn.steemitimages.com/DQmTKqQgjqc4e6xfCAxZPNazCxcx3adBqK1rPt4J21eMnoV/DSC_0110.jpg\",\"https://cdn.steemitimages.com/DQmNjuFMbfRA3JM4U2SwPZjn5JbLqbKoATiercokhPFKWyg/DSC_0107.jpg\"],\"app\":\"steemit/0.1\",\"format\":\"markdown\"}"
    }
  ]
}

{
  "trx_id": "264f00bc2d6efeaa7aa51e4697bf95a8cf48421e",
  "block": 24553103,
  "trx_in_block": 35,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T21:17:57",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "faady92",
      "permlink": "blood-moon-eclipse-sighted-in-pakistan-2018-07-27-20-12-05",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "1180fb9afbf327a90cb3e6956011790674a4de54",
  "block": 24553096,
  "trx_in_block": 8,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T21:17:36",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "mrogy1",
      "permlink": "p-h-o-t-o-g-r-a-p-h-y-e247b74a528be",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "521ac0b03dab896e78fcb64442f7606f5f59373b",
  "block": 24553083,
  "trx_in_block": 26,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T21:16:57",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "hectorro",
      "permlink": "eclipse-lunar-today-july-27-2018",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "9e9daa7ee618bbd0f84129e1a9dc7fca52f271ad",
  "block": 24553067,
  "trx_in_block": 12,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T21:16:09",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"spacexx\",\"what\":[\"blog\"]}]"
    }
  ]
}

{
  "trx_id": "958fc54fd4e705253b96318635f5159075081f45",
  "block": 24553063,
  "trx_in_block": 8,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T21:15:57",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "spacexx",
      "permlink": "bitcoin-price-analysis-july-27-2018",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "0752fc7b4f41605a489c33acdb89324f7138a02e",
  "block": 24552845,
  "trx_in_block": 9,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T21:05:03",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "redouanemez",
      "permlink": "earn-up-to-160-usd-i-really-earn-80-usd-do-not-miss-this-opportunity-27-07-2018",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "7dd536f340ad2eaa06ac6fde9e76ae50cc193554",
  "block": 24552498,
  "trx_in_block": 15,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T20:47:42",
  "op": [
    "comment",
    {
      "parent_author": "",
      "parent_permlink": "money",
      "author": "mabdullah22",
      "permlink": "200usd-made-in-20-mintues",
      "title": "200$ made in 20 Mintues",
      "body": "This is the story about my fastest Bounty which I got on Hackerone Platform.This happened about 1 year ago ,when I got a Private Invite from Showmax. Program is now Public\n\n## Showmax\nShowmax is an online subscription video on demand (SVOD) service which launched in South Africa on 19 August 2015.\n\n## Vulnerability\nSo As ususal I started Enumerating the Subdomains And Fired up Sublist3r.I got some domains and started testing them.\n\nOne domain that Caught my eye was SSO.showmax.com.\n\nOn sso.showmax.com there was only a login form.\n\nWhen a user entered wrong logins he/she was shown a failure message.This message parameter was vulnerable to XSS and injection issues.\n\nhttps://sso.showmax.com/auth/failure?message=PAYLOAD&strategy=ldap\n\n\n![showmax.PNG](https://cdn.steemitimages.com/DQmRsRmvPCwT3esF7wxFEqiegRWXsZgbLSSfuccqwSUdhji/showmax.PNG)\n\n\n\n## TakeAways\n~ Test every Parameter you get \n\n## Time-Line\nMay. 9, 2017 → Initial Report Sent on H1\nMay. 9, 2017  → Triage within 10 mins\n\nMay. 9, 2017   → Fixed within 10 mins\nMay. 9, 2017   → Bounty Awarded",
      "json_metadata": "{\"tags\":[\"money\",\"security\",\"bugbounty\",\"infosec\",\"steemit\"],\"image\":[\"https://cdn.steemitimages.com/DQmRsRmvPCwT3esF7wxFEqiegRWXsZgbLSSfuccqwSUdhji/showmax.PNG\"],\"links\":[\"https://sso.showmax.com/auth/failure?message=PAYLOAD&strategy=ldap\"],\"app\":\"steemit/0.1\",\"format\":\"markdown\"}"
    }
  ]
}

{
  "trx_id": "c62de80aa69f0090f5dd59fe41917c2813261f38",
  "block": 24551013,
  "trx_in_block": 19,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T19:33:27",
  "op": [
    "vote",
    {
      "voter": "moneyguruu",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 4200
    }
  ]
}

{
  "trx_id": "331c7731a8d63fa8ec4615ab50bffd9180071d08",
  "block": 24545056,
  "trx_in_block": 28,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T14:35:33",
  "op": [
    "vote",
    {
      "voter": "payelmia",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "108c50afe27e86536095a7f312d24037309d97de",
  "block": 24539035,
  "trx_in_block": 36,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T09:34:30",
  "op": [
    "vote",
    {
      "voter": "scimyworld",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "c7b27c1e02673efcfab0c8d6e7a4d310aeda8a1f",
  "block": 24536059,
  "trx_in_block": 21,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T07:05:42",
  "op": [
    "vote",
    {
      "voter": "ambika138",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "95cc0cb074ba274fa48663ab6f9962e079a0cb0c",
  "block": 24535091,
  "trx_in_block": 58,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T06:17:18",
  "op": [
    "vote",
    {
      "voter": "kate-nakamoto",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "3e1e8aa549a75b0456cf799d5ec84f31c6b0abd7",
  "block": 24534722,
  "trx_in_block": 15,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T05:58:51",
  "op": [
    "vote",
    {
      "voter": "dion66",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "6222234474064ab61cdc4e765c5464e5cedabbe6",
  "block": 24532661,
  "trx_in_block": 18,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T04:15:33",
  "op": [
    "vote",
    {
      "voter": "sujon123",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "7ea792a820f060cae90c4881afda2231f713fb9f",
  "block": 24530649,
  "trx_in_block": 9,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T02:34:45",
  "op": [
    "vote",
    {
      "voter": "akhileshbhai",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "d204e0d42b38b50b2859cefb33256101385db571",
  "block": 24527920,
  "trx_in_block": 40,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-27T00:18:03",
  "op": [
    "vote",
    {
      "voter": "kellancoin",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "9f9fba6e9a9a876cbdf7bad78ef6b1d5d21b8dda",
  "block": 24515077,
  "trx_in_block": 46,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T13:34:24",
  "op": [
    "vote",
    {
      "voter": "gaboski",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "de254ceec9cc3905e65a60d647d59a4b81ef056d",
  "block": 24513413,
  "trx_in_block": 55,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T12:11:00",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"steemsports\",\"what\":[\"blog\"]}]"
    }
  ]
}

{
  "trx_id": "eec9b3a32a8c878cfa9c30800864be980ffc73a8",
  "block": 24513276,
  "trx_in_block": 9,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T12:04:06",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"minnowbooster\",\"what\":[\"blog\"]}]"
    }
  ]
}

{
  "trx_id": "180b3c8e982184fe7dafbbb7ea506dafff9b105c",
  "block": 24512900,
  "trx_in_block": 23,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T11:45:15",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "mahdiyari",
      "permlink": "dblog-io-decentralized-blogging-platform-frontend-and-backend-improvement",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "bdb2ad2c2f552ff10a63853aeff6924d55b57196",
  "block": 24512686,
  "trx_in_block": 22,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T11:34:30",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "vlemon",
      "permlink": "daily-crypto-calendar-july-26th",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "27238b1b819ab6f8e47ea2638f3e8c46d8aa78af",
  "block": 24512636,
  "trx_in_block": 60,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T11:32:00",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "cryptopassion",
      "permlink": "steem-progressing-in-the-direction-of-our-resistance-line-at-1-50usd",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "c382b42e6224ba180f28516d74d067a4299922d7",
  "block": 24512449,
  "trx_in_block": 13,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T11:22:39",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "steemit-bot",
      "permlink": "the-price-of-the-steem-and-steem-dollar-today-25-7",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "833ec0d86cfd9c868295d6b0182bbf6706c78b3d",
  "block": 24512440,
  "trx_in_block": 45,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T11:22:12",
  "op": [
    "vote",
    {
      "voter": "mabdullah22",
      "author": "themightyvolcano",
      "permlink": "pickleball",
      "weight": 10000
    }
  ]
}

{
  "trx_id": "5214e769d01301ee560e6d874ec9c75153b653ed",
  "block": 24512011,
  "trx_in_block": 26,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T11:00:39",
  "op": [
    "account_update",
    {
      "account": "mabdullah22",
      "posting": {
        "weight_threshold": 1,
        "account_auths": [
          [
            "steem.app",
            1
          ]
        ],
        "key_auths": [
          [
            "STM6LCLT9whkfjYZTyB7hCUYXUhTFEyHbGkXjNowLpjQWareDxyBr",
            1
          ]
        ]
      },
      "memo_key": "STM6FBAxt6yNU1wULZpmUy4CUcn92pMRWZ5HTfFgCLJSPP9BwZ3qJ",
      "json_metadata": "{\"profile\":{\"profile_image\":\"https://cdn.steemitimages.com/DQmZTZdNU9eVrZz5FeFJKDoRWrd3a96euu8ZpB76AVsA46E/DSC_0514.jpg\",\"name\":\"Muhammad Abdullah\",\"about\":\"Undergrad Computer Engineering Student From Pakistan ,Interested in Hacking and Photography\"}}"
    }
  ]
}

{
  "trx_id": "d9ce032ba1c3020d0045522398f4c46c40ce5ac3",
  "block": 24508833,
  "trx_in_block": 11,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T08:21:18",
  "op": [
    "comment",
    {
      "parent_author": "steemek",
      "parent_permlink": "re-mabdullah22-how-i-hacked-a-crypto-exchange-bug-bounty-writeup-20180725t222128713z",
      "author": "mabdullah22",
      "permlink": "re-steemek-re-mabdullah22-how-i-hacked-a-crypto-exchange-bug-bounty-writeup-20180726t082112529z",
      "title": "",
      "body": "To intercept you need to Install Burp CA certificates in your browser ...Look at this https://portswigger.net/burp/help/proxy_options_installingcacert \n\nAfter which you can browse and intercept HTTPS request ...I hope it clears...",
      "json_metadata": "{\"tags\":[\"cryptocurrency\"],\"links\":[\"https://portswigger.net/burp/help/proxy_options_installingcacert\"],\"app\":\"steemit/0.1\"}"
    }
  ]
}

{
  "trx_id": "540646cd09aa7c01ab51024bf35910167f849eef",
  "block": 24508702,
  "trx_in_block": 16,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-26T08:14:45",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"money-guru\",\"what\":[]}]"
    }
  ]
}

{
  "trx_id": "6d2f0ef9d80a4f629ce0dd30587ac347e22bace4",
  "block": 24496851,
  "trx_in_block": 36,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T22:21:27",
  "op": [
    "vote",
    {
      "voter": "steemek",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "weight": 500
    }
  ]
}

{
  "trx_id": "92e4d7404581469d80d97326db508f973bf104fb",
  "block": 24496850,
  "trx_in_block": 20,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T22:21:24",
  "op": [
    "comment",
    {
      "parent_author": "mabdullah22",
      "parent_permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "author": "steemek",
      "permlink": "re-mabdullah22-how-i-hacked-a-crypto-exchange-bug-bounty-writeup-20180725t222128713z",
      "title": "",
      "body": "Noob talking:\nHow can you intercept traffic from \"HTTPS\" encrypted sites with Burp or any software?It's encrypted,right??",
      "json_metadata": "{\"tags\":[\"cryptocurrency\"],\"app\":\"steemit/0.1\"}"
    }
  ]
}

{
  "trx_id": "46d7cc582b4a635ee6cbf7b477df7bb48c3a0587",
  "block": 24496664,
  "trx_in_block": 3,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T22:12:06",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"theshahzada\",\"what\":[\"blog\"]}]"
    }
  ]
}

{
  "trx_id": "56cc5c3f4074fd9924211e5d432a871d81b899ae",
  "block": 24496649,
  "trx_in_block": 38,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T22:11:21",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"moneyguruu\",\"what\":[\"blog\"]}]"
    }
  ]
}

{
  "trx_id": "080704d913e4068bd1d3415ddef77facd35c17cf",
  "block": 24496616,
  "trx_in_block": 7,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T22:09:42",
  "op": [
    "account_update",
    {
      "account": "mabdullah22",
      "memo_key": "STM6FBAxt6yNU1wULZpmUy4CUcn92pMRWZ5HTfFgCLJSPP9BwZ3qJ",
      "json_metadata": "{\"profile\":{\"profile_image\":\"https://cdn.steemitimages.com/DQmZTZdNU9eVrZz5FeFJKDoRWrd3a96euu8ZpB76AVsA46E/DSC_0514.jpg\",\"name\":\"Muhammad Abdullah\",\"about\":\"Undergrad Computer Engineering Student From Pakistan ,Interested in Hacking and Photography\"}}"
    }
  ]
}

{
  "trx_id": "ea9abb0bd53fc32ab66df1447d694b2a4004ecfd",
  "block": 24496123,
  "trx_in_block": 18,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T21:45:03",
  "op": [
    "comment",
    {
      "parent_author": "",
      "parent_permlink": "cryptocurrency",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "title": "How I hacked a Crypto Exchange (Bug Bounty Writeup)",
      "body": "@@ -1697,16 +1697,19 @@\n ypass %0A%0A\n+## \n IDOR in \n",
      "json_metadata": "{\"tags\":[\"cryptocurrency\",\"exchange\",\"security\",\"infosec\",\"bugbounty\"],\"image\":[\"https://cdn.steemitimages.com/DQmf26JK6sQmu7a8yQxLKxSnaTXF4sfuQpQnkrZPeFdVFrz/reset%20request.PNG\",\"https://cdn.steemitimages.com/DQmfNsM2p57yL8WbvERod1wh3ovYstHbpcH99ZkkGeVVpbA/Minionshappyyay.gif\",\"https://cdn.steemitimages.com/DQmdx1sZHS2t1xPwrZ7CRUhrjBQHwBKAwKBTvLBhPtNzVFJ/2fa%20request.PNG\",\"https://cdn.steemitimages.com/DQmSAFa2A12DnKfzXhA6aTZxwHZhzKhxGprgFFhvVLae1M6/2fa%20response.PNG\"],\"links\":[\"https://www.owasp.org/index.php/Top_10_2010-A4-Insecure_Direct_Object_References\",\"http://xyz.exchange/#/reset_password/cet6YhGBFVD89jnuOiVMwfdr4mcsaeEwk2OimSc0LtVg\"],\"app\":\"steemit/0.1\",\"format\":\"markdown\"}"
    }
  ]
}

{
  "trx_id": "cd7953171682f537210a363a6b2ccf5afdba812e",
  "block": 24496075,
  "trx_in_block": 39,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T21:42:39",
  "op": [
    "comment",
    {
      "parent_author": "",
      "parent_permlink": "cryptocurrency",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "title": "How I hacked a Crypto Exchange (Bug Bounty Writeup)",
      "body": "@@ -668,16 +668,18 @@\n  IDOR.%0A%0A\n+# \n Descript\n@@ -1495,16 +1495,42 @@\n ences%0A%0A%0A\n+# Testing + Exploitation :\n %0AIDOR!! \n@@ -3461,16 +3461,18 @@\n ion.%0A%0A%0A%0A\n+# \n Take Awa\n@@ -3612,16 +3612,18 @@\n nses.%0A%0A%0A\n+# \n Time-lin\n",
      "json_metadata": "{\"tags\":[\"cryptocurrency\",\"exchange\",\"security\",\"infosec\",\"bugbounty\"],\"image\":[\"https://cdn.steemitimages.com/DQmf26JK6sQmu7a8yQxLKxSnaTXF4sfuQpQnkrZPeFdVFrz/reset%20request.PNG\",\"https://cdn.steemitimages.com/DQmfNsM2p57yL8WbvERod1wh3ovYstHbpcH99ZkkGeVVpbA/Minionshappyyay.gif\",\"https://cdn.steemitimages.com/DQmdx1sZHS2t1xPwrZ7CRUhrjBQHwBKAwKBTvLBhPtNzVFJ/2fa%20request.PNG\",\"https://cdn.steemitimages.com/DQmSAFa2A12DnKfzXhA6aTZxwHZhzKhxGprgFFhvVLae1M6/2fa%20response.PNG\"],\"links\":[\"https://www.owasp.org/index.php/Top_10_2010-A4-Insecure_Direct_Object_References\",\"http://xyz.exchange/#/reset_password/cet6YhGBFVD89jnuOiVMwfdr4mcsaeEwk2OimSc0LtVg\"],\"app\":\"steemit/0.1\",\"format\":\"markdown\"}"
    }
  ]
}

{
  "trx_id": "d23a094d7c59246c302f3e9e198b762fdd81b6b9",
  "block": 24495990,
  "trx_in_block": 26,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T21:38:24",
  "op": [
    "comment",
    {
      "parent_author": "",
      "parent_permlink": "cryptocurrency",
      "author": "mabdullah22",
      "permlink": "how-i-hacked-a-crypto-exchange-bug-bounty-writeup",
      "title": "How I hacked a Crypto Exchange (Bug Bounty Writeup)",
      "body": "Hi\nThis is my first write-up on Steem and also a Info-Sec writeup after a long time. The story starts when My 6th semester ended and I got some time to hunt. In summer break you have HELL of a time. So I was looking to hunt some website, tied of Duplicates on Hackerone. I came across a Crypto Exchange while surfing google.I won’t be taking the Exchange name here let's say it as xyz.exchange. \n\nSo I signed up for the exchange and started testing it. The exchange was highly vulnerable, I was surprised to see that an exchange having volume in thousand of BTC is vulnerable to these type of Vulnerabilities.  \n\nThe bug which helped me to hack the whole exchange was IDOR.\n\nDescription:\nInsecure Direct Object References occur when an application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization and access resources in the system directly, for example, database records or files. \nInsecure Direct Object References allow attackers to bypass authorization and access resources directly by modifying the value of a parameter used to directly point to an object. Such resources can be database entries belonging to other users, files in the system, and more. This is caused by the fact that the application takes user-supplied input and uses it to retrieve an object without performing sufficient authorization checks. \n\nReference:  https://www.owasp.org/index.php/Top_10_2010-A4-Insecure_Direct_Object_References\n\n\n\nIDOR!! I love IDORs , especially when they are in Password Reset functionality.\n\nThis attack basically consists of two vulnerabilities.\n\nIDOR in Password Reset + 2fa bypass \n\nIDOR in Password Reset Functionality:\n\nWhen I Requested a password reset link I got something like below\n\nhttp://xyz.exchange/#/reset_password/cet6YhGBFVD89jnuOiVMwfdr4mcsaeEwk2OimSc0LtVg\n\n\nI thought that the exchange is using some kind of token implementation here. But I was wrong when I intercepted my Request in Burp. It was a simple POST request being made at /api/reset_password\n\n\n\n![reset request.PNG](https://cdn.steemitimages.com/DQmf26JK6sQmu7a8yQxLKxSnaTXF4sfuQpQnkrZPeFdVFrz/reset%20request.PNG)\n\n\n\nThis request had an id parameter. Every user is assigned an id in the system. The id was incrementing id. From a Hacker perspective, I first thing that came into my mind was what happens if I change this id. And to my surprise, it was vulnerable to IDOR.\nI made two accounts and tested it and it WORKED!!!\n\nI was like…\n\n\n![Minionshappyyay.gif](https://cdn.steemitimages.com/DQmfNsM2p57yL8WbvERod1wh3ovYstHbpcH99ZkkGeVVpbA/Minionshappyyay.gif)\n\nNow comes the second part. Taking over the full account is not possible without correct 2fa token as its required upon login.\n\nFor confirming the 2fa token the following request was being made.\n\n\n![2fa request.PNG](https://cdn.steemitimages.com/DQmdx1sZHS2t1xPwrZ7CRUhrjBQHwBKAwKBTvLBhPtNzVFJ/2fa%20request.PNG)\n\n\nCode as the 2fa token. I set the burp to show its response. The response was as follows.\n\n\n![2fa response.PNG](https://cdn.steemitimages.com/DQmSAFa2A12DnKfzXhA6aTZxwHZhzKhxGprgFFhvVLae1M6/2fa%20response.PNG)\n\n\nSo the trick was to just set the response to true as you will get access to the account even token as “123456”.\n\nLater I found the Admin’s Email and his corresponding account Id via using IDOR in their Ticket System. But I didn’t exploited it as COO didn’t give me the permission.\n\n\n\nTake Aways:\n\n~ Burp is your Ultimate Friend Always keep it on and Look at every Request being Made.\n~ Never Forget to Play With Request Responses.\n\n\nTime-line:\nGetting this bug to Authorities was another story Which I will share some other time.\n\nJune. 16, 2018 → Initial Report Sent \n\t\t    NO RESPONSE\nJune. 30, 2018  → Mail for Update\n\t                NO RESPONSE\nJuly. 6, 2018     → Reported Via Telegram group of Exchange\nJuly. 6, 2018     → Triaged\nJuly. 7, 2018     → Fixed \nJuly. 7, 2018     → Bounty awarded",
      "json_metadata": "{\"tags\":[\"cryptocurrency\"],\"image\":[\"https://cdn.steemitimages.com/DQmf26JK6sQmu7a8yQxLKxSnaTXF4sfuQpQnkrZPeFdVFrz/reset%20request.PNG\",\"https://cdn.steemitimages.com/DQmfNsM2p57yL8WbvERod1wh3ovYstHbpcH99ZkkGeVVpbA/Minionshappyyay.gif\",\"https://cdn.steemitimages.com/DQmdx1sZHS2t1xPwrZ7CRUhrjBQHwBKAwKBTvLBhPtNzVFJ/2fa%20request.PNG\",\"https://cdn.steemitimages.com/DQmSAFa2A12DnKfzXhA6aTZxwHZhzKhxGprgFFhvVLae1M6/2fa%20response.PNG\"],\"links\":[\"https://www.owasp.org/index.php/Top_10_2010-A4-Insecure_Direct_Object_References\",\"http://xyz.exchange/#/reset_password/cet6YhGBFVD89jnuOiVMwfdr4mcsaeEwk2OimSc0LtVg\"],\"app\":\"steemit/0.1\",\"format\":\"markdown\"}"
    }
  ]
}

{
  "trx_id": "eaaa17e28c7a7c6ec40b3b820aba339172851aa2",
  "block": 24495624,
  "trx_in_block": 19,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T21:20:06",
  "op": [
    "custom_json",
    {
      "required_auths": [],
      "required_posting_auths": [
        "mabdullah22"
      ],
      "id": "follow",
      "json": "[\"follow\",{\"follower\":\"mabdullah22\",\"following\":\"money-guru\",\"what\":[\"blog\"]}]"
    }
  ]
}

{
  "trx_id": "9bb8ef0f354895a6c8ddb6475bfb9961542387ed",
  "block": 24495545,
  "trx_in_block": 26,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T21:16:09",
  "op": [
    "transfer",
    {
      "from": "blocktrades",
      "to": "mabdullah22",
      "amount": "0.858 STEEM",
      "memo": ""
    }
  ]
}

{
  "trx_id": "9bb8ef0f354895a6c8ddb6475bfb9961542387ed",
  "block": 24495545,
  "trx_in_block": 26,
  "op_in_trx": 0,
  "virtual_op": 0,
  "timestamp": "2018-07-25T21:16:09",
  "op": [
    "account_create",
    {
      "fee": "3.000 STEEM",
      "creator": "blocktrades",
      "new_account_name": "mabdullah22",
      "owner": {
        "weight_threshold": 1,
        "account_auths": [],
        "key_auths": [
          [
            "STM8jEN9rHcUDRSdaqwhbit3Z2t9jzcC9Jvsz7BELmB2oEmtkayUM",
            1
          ]
        ]
      },
      "active": {
        "weight_threshold": 1,
        "account_auths": [],
        "key_auths": [
          [
            "STM6gVXGHnRQLMWHS7bBTyGRJgeseVqGsaTpNbjX8goYYXF4ygaMc",
            1
          ]
        ]
      },
      "posting": {
        "weight_threshold": 1,
        "account_auths": [],
        "key_auths": [
          [
            "STM6LCLT9whkfjYZTyB7hCUYXUhTFEyHbGkXjNowLpjQWareDxyBr",
            1
          ]
        ]
      },
      "memo_key": "STM6FBAxt6yNU1wULZpmUy4CUcn92pMRWZ5HTfFgCLJSPP9BwZ3qJ",
      "json_metadata": "{}"
    }
  ]
}