Power up your recon with BeVigil CLI bevigil-cli is a handy tool to extract assets like subdomains, URL params, hosts, S3 buckets, URLs from android applications through BeVigil OSINT API with ease. It has finally been released on github. github.com/Bevigil/BeVigi… [1/n]

Vulnerability of the day: host[.]xyz/.DS_Store --> strings --> zip file containing older JS files --> authentication token leak #bugbounty

This my new favorite tool. Although, I'm biased because I made it. I always felt like FFUF and FFUFPostProcessor should be married. So, I glued them together. github.com/nullenc0de/FFU…

Tired of finding Cognito tokens in JS files and manually converting them into session tokens? I built this tool. It allowed me to gain access to a web app. If anyone can figure out how to forge admin roles that would be awesome. Check it out here: github.com/nullenc0de/Cog…

NOTHING is as scary as a default test page on the internet. These things are goldmines. 👇 github.com/projectdiscove…

Automate bug bounty. SQLI - XSS - LFI waymore -i urls | tee urls-his cat urls-his | gf sqli |urless| anew sqli cat urls-his | gf xss | urless|anew xss cat urls-his | gf lfi | urless|anew lfi ghauri -m sqli --confirm --batch --level=3 -b knoxnl -i xss -X BOTH python3

Emad Shanab - أبو عبد الله If you only care about getting archived URLs and not responses, then use "-mode U" with waymore. It will be a lot quicker

🛠️ waymore: Tip #5 📝 With -mode R there can be LOTS of files. Everyone looks at JS files, but don't forget inline JS! For ease you can use --output-inline-js to get a file of external JS files referenced in ALL inline JS, plus file(s) of combined inline JS for easier review 🤘

My entire month is dedicated to my project. github.com/iamthefrogy/fr… External ASM Tool for Bug-Hunters/Pentesters and Red-Teamers. #cybersecurity #infosec #informationsecurity #bughunting #bugbounty #bugbountytips #bugbountytip

Super excited to share reconftw_ai 🎉 A new tool that reads reconftw results and uses a local LLM (Ollama) to generate actionable reports: bughunter, executive, or brief. It’s lightweight, fast, and helps turn raw recon into insights. Give it a spin! github.com/six2dez/reconf…

Watch Grand Theft Auto VI Trailer 2 Now Explore Vice City and beyond at rockstargames.com/VI

Found another 6 SQLI vulnerabilities, I will report them after finishing my work. My target is PHP,Mysql, behind cloudflare. Using proxychains to bypass the WAF.

Md.Karimul Islam Shezan Yes. But with some custom tool. infosecwriteups.com/waf-bypass-mas…

How to extract unique domains from a list of URLs with unfurl 👇

Make sure to test mobile endpoints, not just mobile apps—test m.target.com. Mobile front-ends often run on separate infra, different WAF policies with different code base for huge sites like gaming/chat etc, hiding unique vuln surfaces...#BugBounty #SQLi #SQLMap [1/n]

Just found an interesting behavior in Firefox that can be used for XSS: If a response lacks the Content-Type header, Firefox renders it as text/plain. But if the URL ends with an extension like .html, Firefox treats it as that. #bugbounty #bugbountytips

Did you know naabu supports UDP port scanning too? 🚀 Just run: naabu -l <targets> -p u:<port>,<port>,<port> Super handy for broadening your recon game. #opensource #hacking #cybersecurity #portscanning #bugbounty

My tool new recon, thanks ProjectDiscovery , Luke Stephens (hakluke) , Robert Graham github.com/KingOfBugbount… #bugbounty #recon #bugbountytips

Live-stream your jq output with the --unbuffered flag😎 It prints results line by line so it's perfect for long-running JSON streams. Check it out 👇

how to turn a root domain into a list of related email addresses using just Subfinder and Katana 👇