2114
Talk and help about bugbounty
Does anyone have an idea how to decrypt this password?
$P$B3zMKWv/rJBL6grfCZmVVZjqGoilIz0
But without Brute force , because I tried it and it did not work and it takes a lot of time
Hey guys I've done bbounty for a while and also made some money. I am trying to restart and I came across a mentorship program claiming to teach niche techniques like organization level business logic bugs, sso attacks etc. The guy is charging 400$ and I don't see any reviews
Any advice? If I shouldn't do this then can anybody link resources/write-ups or getting good at business logic, manual hunting and niche bugs
Can someone tell me how to check DNS configuration of a website
Читать полностью…
If you find login panel and this will be valid creds
Читать полностью…
Make sure the the website still in scope. I've found same thing for PayPal, but those credentials working only in sandbox.paypal.com which was not in scope when I reported.
Читать полностью…
Hello hackers. I want help i found a test login username and password on github that was published 4 years ago can i report it?
Читать полностью…
Hello All, pls. help me with this :
No Rate Limit issues considers as DDoS ?
Hello hackers i have one problem if i try to recon and try to find the endpoints i use katana and waybackurls and gau. sometimes it gives false urls that are not working so how can i fix this issue
Читать полностью…
manual hunting is such an umbrella term man, almost every vuln comes in it.
regarding that course, if there are no reviews to it, I think its better not to try your 400$ there.
regarding resources to any bug class...
1. WebSec Academy, (blogs and labs)
2. search twitter with keywords of the bug you want (like business logic) and reading tweets and blogs / writeups of OG hackers.
3. search in hackerone reports
4. your choice (whatever you got your hands on)
thewizardsvoice/cloud-security-exposed-keep-your-data-safe-from-cyber-attacks-7398de5a0a0c" rel="nofollow">https://medium.com/@thewizardsvoice/cloud-security-exposed-keep-your-data-safe-from-cyber-attacks-7398de5a0a0c
Читать полностью…
i have one question if i delete the account from one website and after the next day if i want to create a new account with the same mail, it will show that the email address already exists can I report it or it
Читать полностью…
I found an open redirect and I want to chain it need help
Читать полностью…
Thanks ! Found a Rate Limit issue in Forgot Password, is it valid one ?
Читать полностью…
if there's no rate limit you can enumerate users
Читать полностью…
hi
maybe who have a good course video or books for pentest?
httpx -l urls -mc 200
Hello brothers, I saw this path on a site. Is this considered a Vulnerability Can it be reported ?
Phpmyadmin Documentation
https://docs.phpmyadmin.net/en/latest/config.html
https://docs.phpmyadmin.net/en/master/setup.html