bugbountygroup | Unsorted

Telegram-канал bugbountygroup - Bug bounty chat

2114

Talk and help about bugbounty

Subscribe to a channel

Bug bounty chat

Common xss types (especially dom), authentication vulns (like what is authentication vs authorization), basic client side vulns, and server side ones

Читать полностью…

Bug bounty chat

I don't have account

Читать полностью…

Bug bounty chat

https://www.linkedin.com/posts/abdullah-parvez-95a8a926b_windows-privilege-escalation-activity-7273583048556732417-iQDl?utm_source=combined_share_message&utm_medium=android_app&utm_campaign=share_via

Читать полностью…

Bug bounty chat

https://www.linkedin.com/posts/abdullah-parvez-95a8a926b_linux-privilege-escalation-activity-7273223108134617089-ivzC?utm_source=combined_share_message&utm_medium=android_app&utm_campaign=share_via

Читать полностью…

Bug bounty chat

I have a lot of private invites on bugcrowd. Lmk if u wanna hunt together.
I also have access to paid tools like osintleak, knoxss, etc

Читать полностью…

Bug bounty chat

Shodan is a paid service so I made it free 😁

Читать полностью…

Bug bounty chat

Sure, I will try it out. Not much of a tool guy though, I hunt manually because of the types of bugs I hunt, they are very difficult to hunt with automation tools. But I am planning to learn tools for injection related vulnerabilities

Читать полностью…

Bug bounty chat

You might like sXtract if you do shodan dorking.
I completely automated shodan/google/dark web dorking in my automation workflow

Читать полностью…

Bug bounty chat

I have a SaaS upcoming

Читать полностью…

Bug bounty chat

https://github.com/Vulnpire

Читать полностью…

Bug bounty chat

Yeah, but it's true that I have encountered some dumb developers in the journey too. One site implemented only client side JS event blocker to block any unwanted intruder to access a particular resource. Just because of not knowing js enough, I couldn’t exploit it.

Читать полностью…

Bug bounty chat

Webshell is not a big deal, more risk if you work with personal data

Читать полностью…

Bug bounty chat

I mean that black hat is always about illegal stuff, breaking the law

Читать полностью…

Bug bounty chat

All I can say that you can find everything in the Internet

Читать полностью…

Bug bounty chat

I don’t think that this is a good idea sharing black hat resources here

Читать полностью…

Bug bounty chat

Can anyone share their experience with VAPT/pentesting interview.What are the key topics and questions should focus on for an entry-level role?

Читать полностью…

Bug bounty chat

does anyone have Hands-On Web Exploitation
NahamSec's Bug Bounty Course
thanks

Читать полностью…

Bug bounty chat

I'm looking for a "bug hunter," especially someone specialized in WordPress and capable of producing PoCs DM me! High payment offered.

Читать полностью…

Bug bounty chat

Absolutely! Let's keep in touch.

Читать полностью…

Bug bounty chat

You are an angel! Heard a lot of good things about Shodan. I will try it out from your repo then. 😁

Читать полностью…

Bug bounty chat

Yeahh I do both. But companies like to see some projects on your resume

Читать полностью…

Bug bounty chat

Reconnaissance and exploitation

Читать полностью…

Bug bounty chat

Wow!! What is it about?

Читать полностью…

Bug bounty chat

Damn! Thank you for sharing man!!

Читать полностью…

Bug bounty chat

I wrote a lot of tools in the journey

Читать полностью…

Bug bounty chat

Yes if there's sensitive data, the price of the shell will go up

Читать полностью…

Bug bounty chat

Let's say,
You got a webshell, you can sell it for $60. It wont worth to risk ur life just for a $60-100

Читать полностью…

Bug bounty chat

You need hacking skills too ofc
But depends on what you're chasing

Читать полностью…

Bug bounty chat

Osint & research = black hat 🤔

Читать полностью…

Bug bounty chat

I think self-learning is the way.
There's limited resources about black hat afaik.

Читать полностью…
Subscribe to a channel