Bug bounty Tips

Открыть в Telegram

🛡️ Cybersecurity enthusiast | 💻 Helping secure the digital world | 🌐 Web App Tester | 🕵️‍♂️ OSINT Specialist Admin: @laazy_hack3r

Больше

Индия57 697 Технологии и приложения17 447

5 834

Подписчики

+924 часа

+687 дней

+38330 день

468

Просмотры поста

~ 24324 часа

~ 32148 часов

8.04%

Коэффициент вовлеченности

~ 3

Постов в день

Ads index

beta

Архив постов

5 836

https://x.com/hakluke/status/1799562392273060283?t=3GumrC47rbzcpbwF5BbsFA&s=35

5 836

🔹API Testing Notes🔹.pdf1.32 MB

5 836

https://medium.com/@pranshux0x/super-blind-sql-injection-20000-bounty-thousands-of-targets-still-vulnerable-f9b013765448

5 836

trufflehog git https://github.com/trufflesecurity/test_keys

5 836

Trufflehog

https://github.com/trufflesecurity/trufflehog

Trufflehog is specifically designed for finding sensitive information, such as API keys, passwords, and other secrets, within code repositories. It scans code for high-entropy strings and known secret patterns. Bug bounty hunters can use Trufflehog to scan code repositories for unintentional secrets or sensitive information leaks. For example, running Trufflehog on a Git repository URL can reveal accidentally committed secrets. To scan a Git repository for secrets, use: trufflehog with the above upload link

5 836

Wordpress Cve Exploit Poc 1.Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner RCE https://github.com/xaitax/CVE-2024-23897 2.Atlassian Confluence, a critical RCE https://github.com/Chocapikk/CVE-2023-22527 3.Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution https://github.com/Chocapikk/CVE-2023-6553 4.Unauthenticated Remote Code Execution – Bricks <= 1.9.6 https://github.com/Chocapikk/CVE-2024-25600 5.WordPress Royal Elementor Addons and Templates Exploit https://github.com/Chocapikk/CVE-2023-5360 6.Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE https://github.com/leoanggal1/CVE-2023-3452-PoC 7.Broken Access Control vulnerability in WordPress Elementor Pro Plugin https://github.com/B1GJ/elementor-pro-exploit 8.Unauthenticated SQL Injection - Paid Memberships Pro < 2.9.8 (WordPress Plugin) https://github.com/r3nt0n/CVE-2023-23488-PoC 9.WordPress Plugin DZS Zoomsounds 6.45 - Arbitrary File Read (Unauthenticated) https://github.com/UrielYochpaz/Exploit-WordPress-Plugin-DZS-Zoomsounds More Comming Soon 🥹

5 836

https://x.com/Bugcrowd/status/1798731127894446233?t=PTTzMBgBCY8VnBaiJzTPtQ&s=35

5 836

Repost from Brut Security

📢Use This Extensions, it will help you to Extract all domains From any website. 🔸Link Extractor: https://link-extractor.cssnr.com 🔸Link Gopher: https://github.com/az0/linkgopher

5 836

portmap is a fast portscan tool, uses shodan public date for port scan github.com/rix4uni/portmap #bugbountytips #bugbountytip

5 836

https://exploit-notes.hdks.org/exploit/web/api/

5 836

https://swarm.ptsecurity.com/xxe-chrome-safari-chatgpt/

5 836

https://x.com/_erg0sum/status/1796679560353677547?t=XGuL6N-0NeX2iRL2eW6caA&s=35

5 836

AnimatedSticker.tgs0.37 KB

5 836

Everyone is good boys and girls, let's see how many total reaction we get today

5 836

If you guys show some intrest then I will also put more efforts to give more tips and tricks right

5 836

We are 800 now and still you guys are not giving any reactions😔