Sign in

I'm a 17 year old aspiring Programmer/Cyber Security/Software Dev that enjoys writing as a hobby.
Photo by Life Of Pix on Pexels

Database breaches are becoming more and more common, and the information inside is becoming more sensitive. It turns out it’s a lot easier than most people think to find databases. Most of them aren’t hidden on company servers, they’re actually hosted in the cloud.

Bug bounty programs are willing to pay lots of money for vulnerabilities involving user data. What’s better than finding the entire database?

I have written a guide on Github detailing my methods of finding databases. The types of databases that are currently detailed are:

  • ElasticSearch
  • AmazonS3
  • Redis

However, this is just the starting point. I am…


LocalStorage and Cookies. These are two methods used for storing and retriving information client side on websites. Usually the server will tell the client to store information in cookies or localstorage (most times through JavaScript).

However there are a few notable differences between the two. Let’s start with cookies.

Cookies

Cookies allow the client and server to communicate with each other using temporary storage. Simply, cookies are sent to the client by the server. Then the content returned by the server is determined by the cookies. …


I recently encountered a situation the title suggests. One of my family members has an Amazon Prime subscription, though they don’t actually use it for the Prime Gaming feature.

If you want to sign in to prime gaming on another pc, or just don’t want to sign into your Amazon account — here’s how to do it.

Head over to the prime gaming website to sign in


Services like Bitly (https://bit.ly) and goo.gl (deprecated) are fantastic. My frequent use of Bitly made me think, “why don’t I do this myself”. Seems easy enough, right? Interestingly I was able to find a few self-hosted link shorteners. The one that caught my eye was YOURLS.

Your Own URL Shortener

That’s what YOURLS stands for — its a pretty smart acronym. YOURLS works exactly like you think. You install it to your server (ideally conntected to a domain) — and are immediately able to use it with the default GUI.

Installing YORLS

  1. Download and install the dependencies required by YOURLS:
  • sudo apt-get install nginx mariadb-server php…


Getting a job at 16 is hard. Making money in ways other than mundane tasks (lawn mowing, dog walking, etc) is difficult at a young age (additionally, the payouts aren’t usually great).

Thinking back to when I was 11, I had a dog walking job with a neighbour. It was once or twice a week, and I got paid $5 per job. I worked this job for nearly 2 years and averaged about $20–30 a month. At the end of the 2 years I had earned about $300 from this job. Lets move on to 4 years later…

In the…


League of Legends is known for its heaping amount of skins for its large amount of playable characters. It’s not known to a lot of people, but Amazon has been giving away League of Legends skin shards for quite some time now. Here’s how to get yours.

1. Amazon Prime Gaming free trial

This is the easy bit. Amazon offers free 30 day prime trials, so all you have to do is sign up (you don’t have to pay at all). If you’re a student, you can even get a 6 month trial. Just go to their website and sign up.

2. Link your Riot Games account

The next bit is super…


Photo by Deepanker Verma from Pexels

Browser security is very important. How we access the internet needs to be secure. This means we put massive trust in the internet browsers we use. This leads us to placing our trust in the companies who develop these browsers.

These companies tell us their browser is “free”. Though as you should know, nothing is free. Everything has a price. In lots of cases, it’s going to be your data.

For example, Google Chrome. It is very well known that Chrome (and most Google applications) collect analytics and information.

Brave Browser is another example. They were injecting affiliate codes into…


I made a post in February about Brave Browser. I recommended my followers and everyone reading the post to make the switch to Brave. However, after certain events over the past year or so, I have decided to stop using Brave.

I initially made this statement about the browser:

I would recommend making the switch from Chrome to Brave, it drastically improved my browsing experience. Brave also has very active developers — security and privacy is not an issue.

While I will not lie, it did improve my browsing experience. The main issue lies with the second part of my…


Windows 11 was recently put into beta access for Windows Insiders. Here’s how to update to Windows 11 for free.

Becoming an insider

Becoming an insider is quite easy, just head to this link:

Then go through the registration process by clicking the “register” link


Are you able to hijack the source of an iFrame, or execute JavaScript inside? This attack (called an XFS attack) typically is considered quite a low vulnerability. Here’s how you can pivot it to a higher severity issue.

What is Cross Frame Scripting?

Cross Frame Scripting (known as XFS) is a vulnerability that doesn’t seem so severe to most people. Frame Hijacking/Injection, etc are all included in this category. XFS is where you are able to control the source attribute of an iFrame, or somehow control scripts inside of it. …

Ethan Roberts

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store