Talk and help about bugbounty
I have a lot of private invites on bugcrowd. Lmk if u wanna hunt together.
I also have access to paid tools like osintleak, knoxss, etc
Sure, I will try it out. Not much of a tool guy though, I hunt manually because of the types of bugs I hunt, they are very difficult to hunt with automation tools. But I am planning to learn tools for injection related vulnerabilities
Читать полностью…You might like sXtract if you do shodan dorking.
I completely automated shodan/google/dark web dorking in my automation workflow
Yeah, but it's true that I have encountered some dumb developers in the journey too. One site implemented only client side JS event blocker to block any unwanted intruder to access a particular resource. Just because of not knowing js enough, I couldn’t exploit it.
Читать полностью…Webshell is not a big deal, more risk if you work with personal data
Читать полностью…I mean that black hat is always about illegal stuff, breaking the law
Читать полностью…All I can say that you can find everything in the Internet
Читать полностью…I don’t think that this is a good idea sharing black hat resources here
Читать полностью…There's a lot of competition as well. And those bb sites are highly secure.
Читать полностью…does anyone have Hands-On Web Exploitation
NahamSec's Bug Bounty Course
thanks
I'm looking for a "bug hunter," especially someone specialized in WordPress and capable of producing PoCs DM me! High payment offered.
Читать полностью…You are an angel! Heard a lot of good things about Shodan. I will try it out from your repo then. 😁
Читать полностью…Yeahh I do both. But companies like to see some projects on your resume
Читать полностью…Yes if there's sensitive data, the price of the shell will go up
Читать полностью…Let's say,
You got a webshell, you can sell it for $60. It wont worth to risk ur life just for a $60-100
You need hacking skills too ofc
But depends on what you're chasing
I think self-learning is the way.
There's limited resources about black hat afaik.
Hmm...I don't have much experience in Dark Web. But it sounds kinda cool, do you have any resources that you can share about black hat hacking and stuff?
Читать полностью…