π·π΄ cristi
@CristiVlad25
ID:2188880010
11-11-2013 19:12:27
10,9K Tweets
38,4K Followers
151 Following
My mobile app hacking/pentesting setup and approach.
Bug Bounty Reports Explained #pentesting #appsec #cybersecurity #bugbounty
youtube.com/watch?v=tMMFx1β¦
How do you use dev tools in your pentests?
Me:
- for client-side code analysis (it's convenient because it's beautified)
- for DOM inspection
- for storage analysis
- for dynamic testing (I'm still trying to learn this)
#pentesting #appsec #cyberssecurity #infosec #bugbounty
My favorite Burp extensions and how I use them.
Bug Bounty Reports Explained #pentesting #appsec #cybersecurity
youtube.com/watch?v=P-8Qg5β¦
Have you heard?
Intigriti released a tool to check for misconfigurations! And it's open source!
#pentesting #appsec #bugbounty #cybersecurity
youtube.com/watch?v=YXxKTbβ¦
This new Burp feature is really useful and interesting :)
#pentesting #appsec #cybersecurity #infosec
Common places to find SQLi:
- login forms, search bars, URL params, cookies, HTTP headers, and other inputs. These are just a few.
In what other places have you found SQLi?
#pentesting #appsec #cybersecurity #infosec