#bugbountytips
57 Threads
Vuln: 403 & 401 Bypasses Severity: High HTTP 401 and 403 are both status codes that indicate that a client's request to a server was not successful. 401 -- client provides no cr...
Here are 30 cybersecurity search engines 1. Dehashed—View leaked credentials. 2. SecurityTrails—Extensive DNS data. 3. DorkSearch—Really fast Google dorking. 4. ExploitDB—Archive...
2023 Hacker's Guide: How to Break into Pentesting and AppSec. (thread)
Day 1⃣2⃣/2⃣0⃣ -- [Broken Access Control Vulnerabilities & Broken Authentication and Session Management] ➡️ Detecting & Exploiting IDOR, Privilege Escalation e.t.c ➡️ Below some of...
موضوع اليوم From domain TakeOver to Account TakeOver on Adobe AEM بنكهة البلاك هات تعريف : سكربت AEM مقدم من شركة ادوبي شبيه بإدارة المحتوى لكن السكربت مدفوع ويستخدم من كبرى الش...
Day 0⃣1⃣/2⃣0⃣ -- [Bug Bounty Reconnaissance/Information Gathering] ➡️ Being Day 1, Recon is usually the first approach when handling your target. ➡️ Below are some of the Best Ch...
موضوع اليوم : استخراج بيانات حساسة من ملفات Js مثل token , api , password .. ثم استغلالها ب٤ خطوات بسيطة مع عمل اتمتة لها تعتبر حاليا من أكثر الممارسات الخاطئة انتشارا من قبل ا...
How about some quick recon only using tools by @pdiscoveryio ? 🧵👇 #bugbounty #recon #bugbountytips
Top burpsuite extensions you must give a try while hunt✅ 👇🔥 #bugbountytips #infosec →Autorise: Used to detect IDORs and BACs →Upload Scanner: Tests multiple upload vulnerabilities...
Here are 27 ways to learn ethical hacking for free: Credit: @danielmakelley Thread 🧵 ⬇ #infosec #bugbountytips #ctf #hacking 1. Root Me — Challenges. 2. Stök's YouTube — Videos...
Understanding the Internet - Part 7 "Virtual Hosts" - A thread 🧵👇 #bugbounty #infosec #cybersecurity
موضوعنا اليوم عن:- ◀️ ماهي أعلى خطورة في XSS ▶️ جيب قهوتك واستمتع بالقراءة https://t.co/toPbUsJQBS
