Intercepts — Field Notes & Writeups
INTERCEPTS·FIELD NOTES & WRITEUPS
- 2026-05-28DOC-2026-007-AC
Access Control & IDOR
Why the most common bug in bug bounty isn't a clever exploit — it's the server forgetting to check who's asking.
WEB · TUTORIAL · WEB-SECURITY16 min read - 2026-05-21DOC-2026-006-SSTI
Server-Side Template Injection
How template engines turn user input into remote code execution — and how to find, exploit, and fix it.
WEB · TUTORIAL · WEB-SECURITY16 min read