Bug bounty Tips

Kanalga Telegram’da o‘tish

🛡️ Cybersecurity enthusiast | 💻 Helping secure the digital world | 🌐 Web App Tester | 🕵️‍♂️ OSINT Specialist Admin: @laazy_hack3r

Ko'proq ko'rsatish

Hindiston56 903 Texnologiyalar & Aralashmalar17 236

5 866

Obunachilar

+924 soatlar

+657 kunlar

+34530 kunlar

492

Post ko'rishlar

~ 28724 soatlar

~ 41348 soatlar

8.39%

Muloqot nisbati

~ 3

Kuniga postlar

Ads index

beta

Postlar arxiv

5 868

Repost from Codelivly - Your Journey To Cybersecurity

🔍👨‍💻🛡 Ready to become an ethical hacker? 🛡👩‍💻🔍 Check out this roadmap I found in PDF format! It's packed with valuable insights and resources for anyone interested in the exciting world of ethical hacking. 🚀💻💪

5 868

Check this out the tweet on top owasp Top 10 LLM https://twitter.com/Cipher0ps_tech/status/1685915085292851200?t=SuSVvlSh6381F22QKF0jRg&s=19

5 868

https://twitter.com/Cipher0ps_tech/status/1685907572946288640?t=9PKpZvvUFWEja_wQ48wNSA&s=19

5 868

Repost from Ethical Hacking Tutorials

@EthicalHackX - EthicalHackX.OffSec.EXP-312 (OSMR).7z

5 868

Repost from Ethical Hacking Tutorials

#OffSec | EXP-312: Advanced macOS Control Bypasses OSMR Certification More at @EthicalHackX Link - OSMR-EXP312

5 868

📝🤔 We're considering adding an interview questions blog to our website! What are your thoughts? Should we go for it? 👇 Blog book.cipherops.tech

Anonymous voting

5 868

https://book.cipherops.tech/bug-bounty-notes/overview/google-hacking-using-dorks/shodan-dorks

5 868

https://book.cipherops.tech/bug-bounty-notes/tools/axion-scan

5 868

Check out this article on Ssrf-from-hackerone report. https://book.cipherops.tech/bug-bounty-notes/web-application/ssrf-from-hackerone

5 868

Repost from Null Group Official

(Course) ChatGPT 2023 – Passive Income W/ Artificial Intelligence ▪️Size :- 1 Gb ▪️Mega Link :- https://mega.nz/file/JmVBxITJ#ZzUdeD6QgZ-5U3JwG_eG2WfBigECOPMmLcCUdAHA7rI ......»» Share For More Courses👉🏻⚡️💪🏻 : https://t.me/nullgroupofficial

5 868

Repost from The Method Zone ×͜×

🌐 How to Make Temporary File Cleaner With Batch? 🟢 First: Open Notepad Or Any Text Editor Then Copy And Paste This Code: ➖➖➖➖➖➖➖➖➖➖ @echo off @echo Made By Nardos @echo. @echo Delete All Temporary Files? @echo. pause color 3 Del /S /F /Q %temp% Del /S /F /Q %Windir%\Temp Del /S /F /Q C:\WINDOWS\Prefetch @echo. @echo All Temporary Files Sucessfully Deleted! @echo. pause ➖➖➖➖➖➖➖➖➖➖ 🟢Then Save it As Name.bat DONE ✅ ➖➖➖➖➖➖➖➖➖➖ @the_method_zone

5 868

Repost from The Method Zone ×͜×

🎁 Indian YouTubers Biggest Paid Course Free For You 🎁 By THE_PRESlDENT ✅✅Learn Everything in Hindi and and English languages are available✅✅ #Hacking #Crypto #Programming #Python #Cracking #WiFi_Hacking #Bug_Bounty #Blogging #YouTube #Graphic_Design ✅Also many Youtuber courses are available there ✅ 💰Price: Uncountable$(₹)💵 😍[ BUT FREE FOR YOU ]😍 🔅Size: 150Gb+🔅 🎁 Download link :- https://link.vipurl.in/wuFdyIom 🔥Reaction Do or Paid Content Lo🔥

5 868

Repost from #bugbountytips

#recon #nuclei #bugbountytips

> subfinder -d tesla.com |tlsx -nc -silent -so | awk '{for(i=2; i<=NF; i++) printf "%s ", $i; print ""}'| tr -d '[],' | sort -uf

> Default engine is Shodan
> export SHODAN_API_KEY=XXX and OTHERS
> nuclei -rl 300 -nc -uc -ue -ul 10000 -uq 'org:"Tesla Motors Inc"' -silent

5 868

Repost from #bugbountytips

More than 20000+ nuclei templates https://github.com/adampielak/nuclei-templates #nuclei #bugbountytips

5 868

Repost from #bugbountytips

cat fuzz_endpoints.txt http://127.0.0.1:8082/info?name=test&another=value&random=data http://127.0.0.1:8082/redirect?redirect_url=/info?name=redirected_from_url http://127.0.0.1:8082/request?url=https://example.com http://127.0.0.1:8082/email?text=important_user http://127.0.0.1:8082/permissions?cmd=whoami http://127.0.0.1:8082/info?name=redirected_from_url

> nuclei -t fuzzing-templates/ -list fuzz_endpoints.txt

https://github.com/projectdiscovery/fuzzing-templates #bugbountytips #nuclei

5 868

Repost from N/a

5 868

Repost from #bugbountytips

Browser-Based application LFI file:///etc/passwd blacklisted? - Use "view-source:file:///etc/passwd" "view-source" is often forgotten by developers in blacklists. #bugbountytips

5 868

Repost from #bugbountytips

bypass alert ==>

alert;[alert][0].call(this,1)

#xss #web #bypass #bugbountytips

5 868

Repost from #bugbountytips

Weird IDOR I've never seen before: 1. User 1 updates at /api/account 2. User 2 registers at /api/register 3. Change userID for /api/register from User 2 -> User 1 🤯 IDOR succeeds - User 2 changes account details of User 1 via registration endpoint #bugbountytips