Someone still hardcode shodan keys in github public files....then they remove them, but you can see them from commits :D

Inti De Ceukelaire Brute Logic Same for phone numbers, ;ext=, ;phone-context= etc are considered 'valid' parts of a phone number. :)

datatracker.ietf.org/doc/html/rfc53…

Today, I took a few minutes to analyze the #WordPress Automatic Plugin CVE-2024-27956 (Unauthenticated Arbitrary SQL Execution) #security #vulnerability . Turns out it is super easy to exploit.

Here is a basic PoC:
Since 'q' is passed directly into a $wpdb->get_results() call,…

Tricks to find XSS injection points:
* Check for JS variables with empty string assignments in the HTML response
If you see ' var redirUrl = '';' in the HTML response, there is a decent chance that 'redirURL' might be a query parameter

* HTML input field names
Check the 'name'…

Yay, I was awarded a $5,600 bounty on HackerOne! #TogetherWeHitHarder #bugbounty

🧵1/n So I found Admin Panel Takeover via Improper Authentication

Recon: Using Censys, I found an IP belonging to the org. I used masscan and discovered an unusual open port.

Just reported another cache poisoning🥳

They just marked my submission as 'resolved', unluckily for them i can still reproduce the bug in the same way 🤔. They didn't ask for a retest, should i make a new submission and get another bounty or simply reply friendly to the same submission? #intigriti #BugBounty

CVE-2024-0333

Take a deep dive into CVE-2024-0333 explained by Malcolm Stagg, a Google Chrome vulnerability enabling malicious extension installation in the InfoSec Writeups 107th Weekly Newsletter!

weekly.infosecwriteups.com/iw-weekly-107/

After years spent copying google dorks one by one, i finally made a list of urls to use with 'open multiple urls' firefox extension:

pastebin.com/09grb2sF

Request smuggling is an amazing bug class! But I barely ever did more than running Request Smuggler. So I've analysed tens of reports and in this video, I'll break down the most common root causes and I'll give you some ideas for future research. Enjoy!

IDOR + ATO Account Takeover via Reset Password

- a logged in area;
- intercept password change request;
- change username to another;
- if u have successfully changed user pass, u have an IDOR + ATO;

Impact: Critical

#bugbounty #bugbounty tips #bugbounty tip

How to look for Leaked Credentials ‼️🚨

By: H4x0r.DZ🇩🇿

Source: github.com/h4x0r-dz/Leake…

#Hacking #infosec urity #infosec #Pentesting #redteam #pwn #CyberSecurity #CTF #bug #redteam #CyberSecurity #cybersecuritytips #CyberSecurity Awareness #BugBounty #bug bountytips

Don't forget that it's not just archive org that has a free API, but other web archives as well. Their list is available in the API for OSINT repository.

github.com/cipher387/API-…