متاح الآن! بحث تيليغرام 2025 — أهم رؤى العام 
Bug bounty Tips
الذهاب إلى القناة على Telegram
🛡️ Cybersecurity enthusiast | 💻 Helping secure the digital world | 🌐 Web App Tester | 🕵️♂️ OSINT Specialist Admin: @laazy_hack3r
إظهار المزيد5 866
المشتركون
+924 ساعات
+657 أيام
+34530 أيام
أرشيف المشاركات
5 868
Repost from Codelivly - Your Journey To Cybersecurity
🔍👨💻🛡 Ready to become an ethical hacker? 🛡👩💻🔍 Check out this roadmap I found in PDF format! It's packed with valuable insights and resources for anyone interested in the exciting world of ethical hacking. 🚀💻💪
5 868
Check this out the tweet on top owasp Top 10 LLM https://twitter.com/Cipher0ps_tech/status/1685915085292851200?t=SuSVvlSh6381F22QKF0jRg&s=19
5 868
Repost from Ethical Hacking Tutorials
#OffSec | EXP-312: Advanced
macOS Control Bypasses
OSMR Certification
More at @EthicalHackX
Link - OSMR-EXP312
5 868
📝🤔 We're considering adding an interview questions blog to our website! What are your thoughts? Should we go for it? 👇 Blog book.cipherops.tech
5 868
Check out this article on Ssrf-from-hackerone report. https://book.cipherops.tech/bug-bounty-notes/web-application/ssrf-from-hackerone
5 868
Repost from Null Group Official
(Course) ChatGPT 2023 – Passive Income W/ Artificial Intelligence
▪️Size :- 1 Gb
▪️Mega Link :- https://mega.nz/file/JmVBxITJ#ZzUdeD6QgZ-5U3JwG_eG2WfBigECOPMmLcCUdAHA7rI ......»» Share For More Courses👉🏻⚡️💪🏻 : https://t.me/nullgroupofficial
5 868
Repost from The Method Zone ×͜×
🌐 How to Make Temporary File Cleaner With Batch?
🟢 First: Open Notepad Or Any Text Editor Then Copy And Paste This Code:
➖➖➖➖➖➖➖➖➖➖
@echo off
@echo Made By Nardos
@echo.
@echo Delete All Temporary Files?
@echo.
pause
color 3
Del /S /F /Q %temp%
Del /S /F /Q %Windir%\Temp
Del /S /F /Q C:\WINDOWS\Prefetch
@echo.
@echo All Temporary Files Sucessfully Deleted!
@echo.
pause
➖➖➖➖➖➖➖➖➖➖
🟢Then Save it As Name.bat
DONE ✅
➖➖➖➖➖➖➖➖➖➖
@the_method_zone
5 868
Repost from The Method Zone ×͜×
🎁 Indian YouTubers Biggest Paid Course Free For You 🎁
By THE_PRESlDENT
✅✅Learn Everything in Hindi and and English languages are available✅✅
#Hacking
#Crypto
#Programming
#Python
#Cracking
#WiFi_Hacking
#Bug_Bounty
#Blogging
#YouTube
#Graphic_Design
✅Also many Youtuber courses are available there ✅
💰Price: Uncountable$(₹)💵
😍[ BUT FREE FOR YOU ]😍
🔅Size: 150Gb+🔅
🎁 Download link :-
https://link.vipurl.in/wuFdyIom
🔥Reaction Do or Paid Content Lo🔥
5 868
Repost from #bugbountytips
#recon #nuclei #bugbountytips
> subfinder -d tesla.com |tlsx -nc -silent -so | awk '{for(i=2; i<=NF; i++) printf "%s ", $i; print ""}'| tr -d '[],' | sort -uf
> Default engine is Shodan
> export SHODAN_API_KEY=XXX and OTHERS
> nuclei -rl 300 -nc -uc -ue -ul 10000 -uq 'org:"Tesla Motors Inc"' -silent5 868
Repost from #bugbountytips
More than 20000+ nuclei templates
https://github.com/adampielak/nuclei-templates
#nuclei #bugbountytips
5 868
Repost from #bugbountytips
cat fuzz_endpoints.txt
http://127.0.0.1:8082/info?name=test&another=value&random=data
http://127.0.0.1:8082/redirect?redirect_url=/info?name=redirected_from_url
http://127.0.0.1:8082/request?url=https://example.com
http://127.0.0.1:8082/email?text=important_user
http://127.0.0.1:8082/permissions?cmd=whoami
http://127.0.0.1:8082/info?name=redirected_from_url
> nuclei -t fuzzing-templates/ -list fuzz_endpoints.txthttps://github.com/projectdiscovery/fuzzing-templates #bugbountytips #nuclei
5 868
Repost from N/a
JavaScript Secrets - Ссылка на доклад
Bug Bounty Reconnaissance - Ccылка на доклад
Bug Bounty Hunting - Ссылка на доклад
Contact Support of the Company - Ссылка на доклад
SSRF - Interaction File - URL - Ссылка на доклад
Authorization Response - Ссылка на доклад
File Generation - Ссылка на доклад
Secondary Context - Ссылка на доклад
Sensitive Response - Ссылка на доклад
Request Smuggling - Ссылка на доклад
Privilege Escalation - Ссылка на доклад
XML Body - Ссылка на доклад
Reflection in Header - Ссылка на доклад
Redirection Response - Ссылка на доклад
ETO - Adding Email - Ссылка на доклад
GraphQL - Ссылка на доклад
ORG - Ссылка на доклад
GitHub [Sensitive Information] - Ссылка на доклад
Search Engines - Ссылка на доклад
Online Shopping - Ссылка на доклад
Settings - Edit | Add | Remove - Ссылка на доклад
SSO - Ссылка на доклад
2FA - Ссылка на доклад
Log In - Ссылка на доклад
File Upload - Ссылка на доклад
OAuth - Ссылка на доклад
ATO - Reset Password - Ссылка на доклад
Sign UP - Ссылка на доклад
P.S: THX https://twitter.com/0xAwali
5 868
Repost from #bugbountytips
Browser-Based application LFI
file:///etc/passwd blacklisted?
- Use "view-source:file:///etc/passwd"
"view-source" is often forgotten by developers in blacklists.
#bugbountytips5 868
Repost from #bugbountytips
bypass alert ==>
alert;[alert][0].call(this,1)
#xss #web #bypass #bugbountytips5 868
Repost from #bugbountytips
Weird IDOR I've never seen before:
1. User 1 updates at /api/account
2. User 2 registers at /api/register
3. Change userID for /api/register from User 2 -> User 1
🤯 IDOR succeeds - User 2 changes account details of User 1 via registration endpoint
#bugbountytips
