We ventured into Query #Fuzzing and we're taking you with us. Let's go! #OpenSource #appsec #infosec #security buff.ly/4avntkj

Master XSS with HTB Academy: A step-by-step walkthrough to hone your skills

medium.com/@mazalwebdesig…

#cybersecurity #BugBounty #bugbountytips

Another P1 using Godfather Orwa 🇯🇴 tip:
- Found default IIS BLUE page
- Run tool shortscan for iis
- Found endpoint like : target~.zip
- run fuzz and found zip file with a web.config file leaking creds .Leads to Admin dashboard takeover.
#bugbountytip

Update no 3: Reported 15 submissions (total).

Critical one:

Used Js Miner & twitter.com/h4x0r_dz/statu… for finding sen* info in JS files.

Found a JS file disclosing access token without any endpoint.

(1/3)

Discover everything linked to a web address with this OSINT tool! It uncovers domains, subdomains, directories, and files.

github.com/caio-ishikawa/…

#BugBounty #bugbountytips

Using Nuclei to identify hostnames associated with an ASN using the PTR fingerprinting template!

echo <ASN> | nuclei -id ptr-fingerprint

Use this to help you map a target's network structure and identify potential targets for further testing.

By:haksec.io

#bugbountytips

Listening to this brought tears to my eyes, especially when you sang chandrachooda shiva shankara parvati'the second time. I could feel your deep devotion in every single moment of this clip. Your voice is truly a gift from the divine.

Har Har mahadev🕉️

youtu.be/l8pN_11Ilrc?si…

Unlocking the power of Google dorks with a single script. Search for potentially sensitive files across multiple platforms effortlessly.

github.com/DanMcInerney/f…

#BugBounty #bugbountytips

Find Leaked Credentials Using Google Chrome dev Tools

github.com/h4x0r-dz/Leake…

Credit:H4x0r.DZ🇩🇿

#bugbounty tips #bugbounty

Nuclei template that 'Analyse' js files for bug bounty hunters :
- Extract Tokens.
- Extract endpoints.
- Extract URLs.
- Extract Variables names.
(All in one)
github.com/ayadim/Nuclei-…
By:Ayadim

#bugbounty tips #bugbounty

Intigriti It’s a (internal) logon portal
then its should be use for employees, creating account in this panel should be not allowed , so first thing I will try create account and reported 😬
&
SQL injection
Post RXSS
Looking for api calls to see if I can get PII
Playing in Response
Etc…

#bugbountytip s #bugbountytip #blindxss
The following script finds HTML forms in the list of URLs. It helps me a lot to find forms for Blind XSS.
github.com/dirtycoder0124…
Use:
- python3 formfinder.py endpoints.txt

Recon Tip 2:
Use logsensor to find login pages from subdomain file command: logsensor -f subdomain.txt results will be saved in a file.
Now open one by one login page crawl every url and find login , forgot password page and register or signup page

I earned $5,000 with Abdullah Nawaf (HackerX007)🇯🇴 for submission on @bugcrowd #ItTakesACrowd

For 0Day SQLI in
(app extension)
payload was

(select(0)from(select(sleep(6)))v)/*'+(select(0)from(select(sleep(6)))v)+''+(select(0)from(select(sleep(6)))v)+'*/
#bugbountytips
#extension_Injection ✌️

Updated my XSS notes! It can be useful for bug bounty🙂
github.com/Edr4/XSS-Bypas…

Nuclei Templates Collection. Updated. github.com/emadshanab/Nuc…

Make sure to check for 404 Not Found errors in Bug Bounties.

medium.com/@mares.viktor/…

#bugbounty tips #bugbounty

Top 3 RXSS payloads by Otterly

`'';//><img/src=x onError='${x};alert(`1`);'>

`'';//><Img Src=a OnError=location=src>

`'';//></h1><Svg+Only%3d1+OnLoad%3dconfirm(atob('WW91IGhhdmUgYmVlbiBoYWNrZWQgYnkgb3R0ZXJseSE%3d'))>

#bugbounty #bugbounty tips

A very nice and easy approach for finding XSS
infosecwriteups.com/how-i-found-mu…
#bugbounty tip #bugbounty

My Recon Methodology (ep 1). Recon is the process by which you… | by Muhammad Mater | Mar, 2024 | Medium realm3ter.medium.com/my-recon-metho…