The Art Of Zendesk Hijacking
![The Art Of Zendesk Hijacking](https://0xprial.com/wp-content/uploads/2023/11/The-Art-Of-Zendesk-Hijacking-1024x597.png)
Back in July 2023, I was testing a HackerOne Private Program [ let’s call this target xyz.com ] and this target scope was pretty limited. The scope was – xyz.com admin.xyz.com api.xyz.com The subdomain admin.xyz.com looks interesting and I quickly used search.censys.io to look for any beta or dev environment for this admin subdomain using the query […]