When You Recon for Old Urls, and there is to much output you Can use , cut or awk to print only found paths then export them as a fuzzing wordlist .txt and test them , found me a file upload :)
#bugbountytips

Fuzzing with mx-proxy

when I test on one of my private targets on h1 I found this site that have an service for administrators of the site but I try some techniques after some fuzzing I found this endpoint /admin/index.html with a white page
Can us help me Godfather Orwa 🇯🇴 🇸🇦 ROOD | GOAT

Fuzzing

I wrote a post on coverage guided fuzzing for native Android libraries (using Frida & Radamsa), check it out on KnifeCoat 🔪🧥

knifecoat.com/Posts/Coverage…

What's all the FUZZ about? 😵‍💫
A new #HTB Academy module is here! Dive into the powerful testing technique and learn how to use it to spot critical issues in software. Start now: okt.to/J9u3ps
#HackTheBox #HTB Academy #CyberSecurity #Fuzzing

😍story of very quick RCE

Target/cgi-bin/dmt/reset.cgi?db_prefix=%26id%26

You can to add this paths for ur wordlist

cgi-bin/dmt/reset.cgi?db_prefix=%26id%26

cgi-bin/reset.cgi?db_prefix=%26id%26

fuzzing as well

cgi-bin/FUZZ.cgi?FUZZ=%26id%26

credit: Godfather Orwa 🇯🇴

#sec

Fuzzing labs #cybersecurity #fuzzing

💡Unit test is a constant policy function test for bugs X~I(x=c)

Fuzzing is a pseudo-uniform policy (+ mut. strategies) X~U

One exciting application of GPU-EVM by GatlingX ♨️ | GPU-EVM, 100x EVM is training RL-optimised policy function that prunes search spaces intelligently to where the bugs are

#Web3 fuzzing types n tricks.
From this thread, you will get to know types of fuzzing in smart contracts. Let's begin

Two types of fuzzing
1. Stateful fuzzing.
2. Stateless fuzzing.

#web3 #Security #smartcontract #fuzz #infosec #smartcomtractaudit

In #BHUSA Trainings course “Android Userland & Kernel Fuzzing and Exploitation' explore Android security with our designed for all skill levels. Learn about vulnerabilities and their exploitation with our comprehensive curriculum. Reg now >> bit.ly/3wVg53g

How can you use Inductive Reasoning to prove global properties, without using Global Variables?

How to make Mocks work with Mainnet Fuzzing?

How does eBTC use Continous Fuzzing to check their properties against their mainnet deployment?

Workshop by lourens!

Android greybox fuzzing with AFL++ Frida mode blog.quarkslab.com/android-greybo… #Pentesting #fuzzing #CyberSecurity #Infosec

Fuzzing is your best friend. If you stale just fuzz!

tryhackme.com/r/room/lianyu

📱Mobile Hacking Cheatsheets

📝Android and iOS pentesting, forensics, debugging and fuzzing cheatsheets

🔗Link: github.com/randorisec/Mob…

🔖 #infosec #cybersecurity #hacking #pentesting #security

Integration testing, fuzzing, time boxed audits, public audit competitions, and of course stateful fuzzing with ToB. The ability to bombard billions of different permutations at the contracts to try to break the protocol is virtually impossible otherwise.

2/3

Join us for a sharing session about Fuzzing by Daniel Lim !

Golang Fuzzing Explained
sd2995.medium.com/fuzzing-in-gol…

Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller cyberark.com/resources/thre… #Pentesting #CyberSecurity #Infosec