Bug Bounty - GitBook
Ir al canal en Telegram
Everything 4 bug bounty https://t.me/GiftWay32robot?start=_tgr_HwZ24DI5MWJk
Mostrar más7 460
Suscriptores
+524 horas
+307 días
+17430 días
Archivo de publicaciones
7 461
Old School Out-of-Band (OOB) SQL Injection Manual Approach: https://anontuttuvenus.medium.com/old-school-out-of-band-oob-sql-injection-manual-approach-cc50b81c5984?source=rss------bug_bounty-5
7 461
Session Hijacking Vulnerability in Password Reset Flow Leading to Cross-Account Access: https://medium.com/@iPsalmy/session-hijacking-vulnerability-in-password-reset-flow-leading-to-cross-account-access-4823d88e680a?source=rss------bug_bounty-5
7 461
Unleashing My Recon Weapon: A Custom Bash Tool for Bug Bounty: https://medium.com/@kumawatabhijeet2002/unleashing-my-recon-weapon-a-custom-bash-tool-for-bug-bounty-d946b5f26dd9?source=rss------bug_bounty-5
7 461
This is a writeup of how can I get critical $$$$ bounty from PII Disclosure - Broken Access: https://medium.com/@0xNayelx/this-is-a-writeup-of-how-can-i-get-critical-bounty-from-pii-disclosure-broken-access-7a113e5dc50c?source=rss------bug_bounty-5
7 461
How to Find Origin IP of any Website Behind a WAF: https://infosecwriteups.com/how-to-find-origin-ip-of-any-website-behind-a-waf-c85095156ef7?source=rss------bug_bounty-5
7 461
Mastering Wfuzz: Uncover Hidden Web Vulnerabilitiese: https://medium.com/@kumawatabhijeet2002/mastering-wfuzz-uncover-hidden-web-vulnerabilitiese-351cbbef18d6?source=rss------bug_bounty-5
7 461
Automating Authenticated scans in burp suite for 2FA applications
https://freedium.cfd/https://medium.com/@thelazypentester/automating-authenticated-scans-in-burp-suite-for-2fa-applications-ae93882e26c9
7 461
❗️ A new reverse shell called ReverseShell_2025_01.ps1
At the time of publication, none of the scripts were flagged by antivirus systems. However, typically within 2-3 weeks after publication, some vendors begin to detect and flag the malicious files.
🖥 GitHub
7 461
📖 Penetration Testing (1st) 📅 June 14, (2014) ✍️ Author: Georgia Weidman 📖 Pages: (528)
7 461
HTTP version 1.X sends requests as clear-text, and uses a new-line character to separate different fields and different requests. HTTP version 2.X, on the other hand, sends requests as binary data in a dictionary form. I am sharing this because you can actually add this in your next pentest report
7 461
Pentester's Promiscuous Notebook
>Pentest
>Red Team
>Exploit Dev
>Admin
https://ppn.snovvcrash.rocks/
