Talk and help about bugbounty
For bug bounty what you really need is a good monitor
Читать полностью…If anyone here have expertise in Application reverse engineering, cryptography, java programming and bug Bounty then kindly DM me. Need helps in my projects.
Читать полностью…Yeah but what are you trying to accomplish. Showing a picture and saying help doesn’t explain anything
Читать полностью…Please bros. What's the best tool for uncovering all URL endpoints on a website
Читать полностью…They might not pay you more for it to be honest. When they patch the bug it’ll most likely fix it. I would do 1 of 2 things here.
Up to you:
1. You let them know about it, they give you a thank you. And might not get extra for it.
2. Don’t tell them and Collect your bounty, give them a week or so to patch it check back to see if the bug you originally found was patched. If not, wait till they do it and check back. If it was, then try to replicate the 2nd bug you found. If it wasn’t patched. Collect another bounty
часть этой баги или разница? ну, это скорее часть баги, чем разница)
Читать полностью…my first submission was accepted and got a reward then i found a new impact. is there a chance to get another bounty?
Читать полностью…You can try writing it a few ways. Sometimes randomly capitalizing some of the letters can work, using burp to see how it is coming through then repeater, try encoding it on your own and see if it pushes through
Читать полностью…Hi, I found the reflected xss, but I have a problem. For xss to work, you need the link to be like this: /?b4bc4"><script>alert(document.cookie)</script>qdq5c=1
. But when I enter it in the browser or enter it in the link shortener, then basically I am met by url encoding, because of which I cannot reproduce xss, that is, this goes to the server: /?b4bc4%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3Eqdq5c=1
. Do you know how to avoid url encoding so that by clicking on such a link, I can reproduce xss?
Are there any United States, Canada, Australia, New Zealand, or United Kingdom navy/military former or current members (family members too) that want to collaborate on a specific program?
Читать полностью…Bro i have 2 laptops one has rtx 3070 i7 12700 and the other is microsoft surface pro i5
Читать полностью…Hello does anyone know about ryzen 7 5700G for bug Bounty? Can I pair it with an Asus a320m-k? My b550 motherboard was dead 😕
Читать полностью…https://github.com/Aniruddhpathak404/JSCodeInspector
Читать полностью…Don’t u have any idea abt private and public keys ?
Читать полностью…Hello guys help me to get a Remote job as security analyst, i have 1.8 years experience my skills are, red teaming, phising activity in organization, web, android, api and network infrastructure security tester so I m looking for a remote job pls help me to get one
Читать полностью…same bug but different impact. i found owner takeover in team now i found out that the attacker cant be remove from the team
Читать полностью…hello!
I’d like to ask a question: there is a php page and it seems like some unicode characters in a POST request break it and it only renders half a page when unicode character is present. What might it be and how else can I try?
Anyone using frida?
Stuck at a point need some help
Is there a way to exploit Client side desync attack
Читать полностью…