Termux All Command [Telegram Group]

SSRF Tips _-_ If you found something similar to this in your request body {"endpoint":"/adduser","name:"test"} add @burpcollab.com before / {"endpoint":"@burpcollab.com/adduser"} in the backend it will be "https://website@burpcollab.com/adduser"

OSINT TIP 💀 A handy collection of email and phone number hashtag#lookup tools - https://osint.rocks/ #osint

site:*.s3.amazonaws.com -www Uber Invoice site:*.*.*.s3.amazonaws.com ext:xlsx "School" site:cdn.*.com ext:pdf | ext:docx | ext:xlsx "Zomato" site:cdn.*.*.com inurl:admin site:drive.google.com "Dell" #dork #aws

Visual C++ Redistributable Runtimes All-in-One : https://www.techpowerup.com/download/visual-c-redistributable-runtime-package-all-in-one/

SQLI: https://github.com/SAPT01/HBSQLI https://github.com/r0oth3x49/ghauri https://github.com/bambish/ScanQLi https://github.com/Agressiv1njector/psqli-pro https://github.com/CiscoCXSecurity/bbqsql https://github.com/Toxic-Noob/SQLiToolkit https://github.com/the-c0d3r/sqli-scanner https://github.com/tariqhawis/injectbot https://github.com/lanmaster53/sqli-exploiter https://github.com/RobertJonnyTiger/Blind-SQLi-Tool

𝗠𝘆 𝗿𝗲𝗰𝗼𝗻 𝗺𝗲𝘁𝗵𝗼𝗱𝗼𝗹𝗼𝗴𝘆 𝗳𝗼𝗿 𝗵𝘂𝗻𝘁𝗶𝗻𝗴 𝗖𝗩𝗘-𝟮𝟬𝟮𝟭–𝟰𝟮𝟬𝟲𝟯 𝗹𝗲𝗱 𝘁𝗼 𝗱𝗶𝘀𝗰𝗼𝘃𝗲𝗿𝗶𝗻𝗴 𝗮𝗻 𝗥𝗫𝗦𝗦 𝘃𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝗶𝗻 𝘁𝗵𝗲 𝗧𝗮𝘁𝗮 𝗣𝗹𝗮𝘆 𝗽𝗿𝗼𝗴𝗿𝗮𝗺 𝗣𝗮𝗿𝘁 -𝟮 . If you're new to this writeup, I suggest you read part 1 where I shared some valuable info about my recon and other processes. 𝗕𝘂𝗴 𝗡𝗮𝗺𝗲: SAP 7.5.0 Leads to Reflected XSS (R-XSS) 𝗕𝘂𝗴 𝗣𝗿𝗶𝗼𝗿𝗶𝘁𝘆: Medium 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗹𝗲 𝗨𝗥𝗟: https://partner[.]tataplay[.]com/SAPIrExtHelp/random/SAPIrExtHelp/random/%22%3e%3c%53%56%47%20%4f%4e%4c%4f%41%44%3d%26%23%39%37%26%23%31%30%38%26%23%31%30%31%26%23%31%31%34%26%23%31%31%36%28%26%23%78%36%34%26%23%78%36%66%26%23%78%36%33%26%23%78%37%35%26%23%78%36%64%26%23%78%36%35%26%23%78%36%65%26%23%78%37%34%26%23%78%32%65%26%23%78%36%34%26%23%78%36%66%26%23%78%36%64%26%23%78%36%31%26%23%78%36%39%26%23%78%36%65%29%3e.asp 𝗖𝗩𝗘 𝗗𝗲𝘀𝗰𝗿𝗶𝗽𝘁𝗶𝗼𝗻 CVE-2021–42063 is a reflected cross-site scripting (R-XSS) vulnerability present in SAP Knowledge Warehouse versions 7.30, 7.31, 7.40, and 7.50. This vulnerability exists due to the improper handling of user-supplied input within a specific SAP KW component, allowing malicious scripts to be reflected back and executed in the context of the user's browser.

#APKTOOL #APK

( Start Cybersecurity From Zero Level 2.0 ) Course For Beginners :: https://drive.usercontent.google.com/download?id=1Or9U5CUBJdHzL5mZ-J8rIWsFRkoTr3G_&export=download&authuser=0 https://www.mediafire.com/folder/cg300ry3tjowb/Start+Hacking+From+Zero+Level+2.0+Course+For+Beginners+by+Prashant+Asoliya

Hacking tools github : https://github.com/chacka0101/Hacking_Software/tree/master

Discover Ashok, an OSINT reconnaissance tool with features like Wayback Machine crawling, unlimited Google Dorking, GitHub info grabber, subdomain finder and CMS/tech detection! Link:- https://lnkd.in/gKzqMWNf

You can Download those type of JDK from Open Logic : https://www.openlogic.com/openjdk-downloads

Mass Account Takeover Via Stored XSS 😋 Payload :- Syed">

Rat PACK : https://github.com/Cryakl/Ultimate-RAT-Collection https://github.com/AJMartel/MeGa-RAT-Pack Download and Learn!

GoSpider GITHUB LINK: https://lnkd.in/eDmZB8ct Features: Fast web crawling Brute force and parse sitemap.xml Parse robots.txt Generate and verify link from JavaScript files Link Finder Find AWS-S3 from response source Find subdomains from response source Get URLs from Wayback Machine, Common Crawl, Virus Total, Alien Vault Format output easy to Grep Support Burp input Crawl multiple sites in parallel Random mobile/web User-Agent