Talk and help about bugbounty
Wix(.)com Reflected Xss | Bug Bounty #bugbountytip #bugbounty #hacking
https://youtu.be/is0cGl3TXkQ
🚀 Secure Password Hashing & Verification with Python 🐍
Читать полностью…Common xss types (especially dom), authentication vulns (like what is authentication vs authorization), basic client side vulns, and server side ones
Читать полностью…I have a lot of private invites on bugcrowd. Lmk if u wanna hunt together.
I also have access to paid tools like osintleak, knoxss, etc
Sure, I will try it out. Not much of a tool guy though, I hunt manually because of the types of bugs I hunt, they are very difficult to hunt with automation tools. But I am planning to learn tools for injection related vulnerabilities
Читать полностью…You might like sXtract if you do shodan dorking.
I completely automated shodan/google/dark web dorking in my automation workflow
Yeah, but it's true that I have encountered some dumb developers in the journey too. One site implemented only client side JS event blocker to block any unwanted intruder to access a particular resource. Just because of not knowing js enough, I couldn’t exploit it.
Читать полностью…Webshell is not a big deal, more risk if you work with personal data
Читать полностью…I mean that black hat is always about illegal stuff, breaking the law
Читать полностью…what is the difference between reverse engineering and binary exploitation?
Читать полностью…Can anyone share their experience with VAPT/pentesting interview.What are the key topics and questions should focus on for an entry-level role?
Читать полностью…does anyone have Hands-On Web Exploitation
NahamSec's Bug Bounty Course
thanks
I'm looking for a "bug hunter," especially someone specialized in WordPress and capable of producing PoCs DM me! High payment offered.
Читать полностью…You are an angel! Heard a lot of good things about Shodan. I will try it out from your repo then. 😁
Читать полностью…Yeahh I do both. But companies like to see some projects on your resume
Читать полностью…Yes if there's sensitive data, the price of the shell will go up
Читать полностью…Let's say,
You got a webshell, you can sell it for $60. It wont worth to risk ur life just for a $60-100
You need hacking skills too ofc
But depends on what you're chasing