Bug Bounty - GitBook
رفتن به کانال در Telegram
Everything 4 bug bounty https://t.me/GiftWay32robot?start=_tgr_HwZ24DI5MWJk
نمایش بیشتر7 460
مشترکین
+524 ساعت
+307 روز
+17430 روز
آرشیو پست ها
7 461
🔖Top 25 JavaScript path files used to store sensitive information in Web Application⬇️
01. /js/config.js
02. /js/credentials.js
03. /js/secrets.js
04. /js/keys.js
05. /js/password.js
06. /js/api_keys.js
07. /js/auth_tokens.js
08. /js/access_tokens.js
09. /js/sessions.js
10. /js/authorization.js
11. /js/encryption.js
12. /js/certificates.js
13. /js/ssl_keys.js
14. /js/passphrases.js
15. /js/policies.js
16. /js/permissions.js
17. /js/privileges.js
18. /js/hashes.js
19. /js/salts.js
20. /js/nonces.js
21. /js/signatures.js
22. /js/digests.js
23. /js/tokens.js
24. /js/cookies.js
25. /js/topsecr3tdonotlook.js
7 461
How a Cross-Site Scripting Vulnerability Led to Account Takeover
https://www.hackerone.com/vulnerability-management/xss-deep-dive
7 461
How a Business Logic Vulnerability Led to Unlimited Discount Redemption
https://www.hackerone.com/vulnerability-management/stripe-business-logic-error-bug
7 461
A Journey of Limited Path Traversal To RCE With $40,000 Bounty!
https://medium.com/@HX007/a-journey-of-limited-path-traversal-to-rce-with-40-000-bounty-fc63c89576ea
7 461
7 Overlooked recon techniques to find more vulnerabilities
https://www.intigriti.com/researchers/blog/hacking-tools/7-overlooked-recon-techniques-to-find-more-vulnerabilities
7 461
Intigriti Bug Bytes #220 - January 2025 🚀
https://www.intigriti.com/researchers/blog/bug-bytes/bug-bytes-220-january-2025
7 461
Bypassing File Upload Restrictions To Exploit Client-Side Path Traversal · Doyensec's Blog
https://blog.doyensec.com/2025/01/09/cspt-file-upload.html
7 461
AWS Security Configuration Review and Best Practices
https://www.hackerone.com/penetration-testing/aws-security-configuration
7 461
Hunting for blind XSS vulnerabilities: A complete guide
https://www.intigriti.com/researchers/blog/hacking-tools/hunting-for-blind-cross-site-scripting-xss-vulnerabilities-a-complete-guide
7 461
Get the hash of favicon of website (by url or file) and search it in Shodan, Censys and Virustotal.
favihash.com
7 461
Mastering 403 Forbidden Bypass Techniques ✨: https://medium.com/@kumawatabhijeet2002/mastering-403-forbidden-bypass-techniques-4ab1482afe49?source=rss------bug_bounty-5
7 461
SQL Injection via ORDER BY Parameter: https://medium.com/@mfthylmaz/sql-injection-via-order-by-parameter-a7cb7d04017f?source=rss------bug_bounty-5
7 461
Discover All Paths in Next.js Websites: https://rhashibur75.medium.com/discover-all-paths-in-next-js-websites-43e319b24be9?source=rss------bug_bounty-5
7 461
Simple ATO in private program.: https://medium.com/@oXnoOneXo/simple-ato-in-private-program-890cd1485675?source=rss------bug_bounty-5
7 461
From Comments to Command Execution: How an E-Book Platform Gave Me RCE: https://imooaaz.medium.com/from-comments-to-command-execution-how-an-e-book-platform-gave-me-rce-f27a079ca584?source=rss------bug_bounty-5
7 461
Blind XXE with OOB Interaction via XML Parameter Entities: https://osintteam.blog/blind-xxe-with-oob-interaction-via-xml-parameter-entities-97244bf2b85e?source=rss------bug_bounty-5
