Termux All Command [Telegram Group]

Bug bounty tip OF the Day 🤑 🔍 Search Engines for Bug hunter & Security Pro : [ Recon is the key ] 1. http://google.com - Dorks 2. http://shodan.io - Servers 3. http://censys.io - Servers 4. http://hunter.io - Mail addresses 5. http://fullhunt.io - Attack Surface 6. http://onyphe.io - Servers 7. http://socradar.io - Threat Intelligence 8. http://binaryedge.io - Attack Surface 9. http://intelx.io - OSINT 10. http://crt.sh - Certificate search 11. http://vulners.com - Vulnerabilities 12. http://securitytrails.com - Servers

THM solution : https://github.com/AfvanMoopen/tryhackme-

Basic XSS Encoding Tips 1) alert = window["al"+"ert"] 2) bypass () with `` 3) replace space with / 4) encode symbols: < = %3c > = %3e " = %22 [ = %5b ] = %5d ` = %60 Example Payload: %3csvg/onload=window%5b"al"+"ert"%5d`1337`%3e

OpenVPN Download : https://openvpn.net/client/client-connect-vpn-for-windows/

🚨0-Day Today🚨 This is 0day.today, it allows you to buy and download e-x-p-l-o-i-t-s. A lot are free. It contains over 39k different exploits.

How I Hacked NASA Using Google Dork in Just 10 Minutes : https://medium.com/@gaurish.main/how-i-hacked-nasa-using-google-dork-in-just-10-minutes-6ce3b3401512 intitle:"index of /" site:nasa.gov intitle:"index of /" "database" site:nasa.gov intitle:"index of /" "admin" site:nasa.gov intitle:"index of /" "contact" site:nasa.gov

A good tool that quickly finds vulnerabilities "Jira" in almost ALL websites, I use it and recommend it git clone : https://lnkd.in/gNuwGdUm cd Jira-Lens sudo python3 -m pip install -r requirements.txt cd Jira-Lens python3 Jira-Lens.py -u ejemploweb.com

👨‍💻 TOP 8 PHISHING TOOLS USED IN 2024 💻 Setoolkit - https://github.com/trustedsec/social-engineer-toolkit SocialFish - https://github.com/UndeadSec/SocialFish HiddenEye - https://github.com/DarkSecDevelopers/HiddenEye-Legacy Evilginx2 - https://github.com/kgretzky/evilginx2 SeeYou - (Get Location using phishing attack) - https://github.com/Viralmaniar/I-See-You SayCheese - (Grab target’s Webcam Shots) - https://github.com/hangetzzu/saycheese QR Code Jacking - https://github.com/cryptedwolf/ohmyqr

Free OSINT Courses 📌 #OSINT #E041 #FreeCourses I compiled $1,000 worth of OSINT insights into these free courses. A great way to get started with OSINT: 1. Learn OSINT in 4.5h by Heath Adams: https://lnkd.in/d9-dUPV3 2. OSINT At Home by Benjamin S.: https://lnkd.in/d7QE3sT9 3. 10 Minute OSINT Tips by The OSINT Curious Project: https://lnkd.in/dnWmEqh4 4. Complete OSINT Exercises Walkthroughs by Sofia Santos: https://lnkd.in/d7awBizm 5. OSINT Training by Motasem Hamdan: https://lnkd.in/duuzdNzj 6. OSINT Course by David Pereira: https://lnkd.in/dxB3asCH 7. The Complete OSINT Course by Irfan Shakeel: https://lnkd.in/dQMQtBuT 8. OSINT Tutorials by TechChip: https://lnkd.in/dwJd7Z_P 9. Open Source Intelligence by Hackers Arise: https://lnkd.in/deyYntrX 10. Dark Web Foundation: A Guide to the Deep/Dark Web 2019 by Dark Web Academy: https://lnkd.in/d2tXvEFN 11. OSINT Tutorials by Null Byte: https://lnkd.in/dEQhiyWQ 12. OSINT Workshop by Andrew Fordred: https://lnkd.in/dBXC9CgZ - Hope it is helpful! Follow for more! 🔜 #advancedOSINT #cyber #intelligence #enterprises

Read Premium Medium Article for Free:: https://lnkd.in/gkP9ZYvn https://freedium.cfd/ hashtag#premium hashtag#medium hashtag#bugbounty hashtag#ctf

If you are tired of googling for hashtag#BugBounty writeups payloadartist made a little tool that lets you search writeups easily You can also pull the search data in JSON format if you need it https://lnkd.in/dm-5T3rc BugBountyHunting.com

Automation Discovery dirb http://10.10.227.67/ /usr/share/wordlists/SecLists/Discovery/Web-Content/common.txt ffuf -w /usr/share/wordlists/SecLists/Discovery/Web-Content/common.txt -u http://10.10.227.67/FUZZ gobuster dir --url http://10.10.227.67/ -w /usr/share/wordlists/SecLists/Discovery/Web-Content/common.txt hashtag#bugbounty hashtag#ethicalhacking

#CTF hashtag#Bugbounty Best Mind Map :: https://lnkd.in/gbEtZe9q

Great Collection of Tools >> https://offsec.tools

Best for hashtag#osint >> https://lnkd.in/gXWjpdjx https://lnkd.in/gjW_avdC

Free Ethical Hacking Courses Online >>> https://lnkd.in/guGhnnub Best FREE Bug Bounty Courses Online >>>https://lnkd.in/guDs9gYG

Add /api/.env to the wordlist, and maybe you will have access to dotenv file environment that leads to exposing SMTP credentials and AWS access key , secret key