Hacker News new | ask | show | jobs
user: franjkovic
created: 2013-10-20
karma: 1114

[ my public key: https://keybase.io/josipfranjkovic; my proof: https://keybase.io/josipfranjkovic/sigs/4EYnl7a6Vko4DGKQFypdzXwAxT-YnFN8DEc5X34RttQ ]

My security blog: https://www.josipfranjkovic.com

submissions:

Getting any Facebook user's friend list and partial payment card details
416 points | 91 comments
Taking over Facebook accounts using Free Basics partner portal
1 points | 0 comments
Hacking Facebook accounts using CSRF in Oculus-Facebook integration
5 points | 0 comments
0 points | 0 comments
0 points | 0 comments
0 points | 0 comments
0 points | 0 comments
Stealing Facebook access_tokens using CSRF in device login flow
127 points | 82 comments
0 points | 0 comments
0 points | 0 comments
The easiest bug bounties I have won
145 points | 27 comments
0 points | 0 comments
0 points | 0 comments
0 points | 0 comments
0 points | 0 comments
Race conditions on Facebook, DigitalOcean and others (fixed)
294 points | 88 comments
0 points | 0 comments
0 points | 0 comments
0 points | 0 comments
Reading local files from Facebook's server (fixed)
44 points | 19 comments