You may only redirect to *.bugbountyhunter.com

Begin challenge
Easy Open URL Redirect

Developers will often lock down their open redirects to only allow for *.theirdomain.com.

Can you find out how to redirect to any website? Remember, this challenge is designed to only allow for *.bugbountyhunter.com

Solution

Challenge hints
(click to reveal)

Guides

All about Open Redirects [Uber 8k Bug] Login CSRF + Open Redirect = Account Take Over by RonChan Scanning JS files for bugs

Learn like a pro

Practise hacking on a fully functioning website containing real bugs found on bug bounty programs. Use your hacker mindset to uncover as many vulnerabilities as possible!

Become a BOUNTY HUNTER