kpwn.de/2023/05/javasc…

youst.in/posts/cache-po…

☠️

Check NS aws Routes for takeover Emad Shanab - أبو عبد الله Aditya Shende sudi

🛡️ZoneScan🛡️ — AWS Route 53 NS Takeover Detector ZoneScan detects misconfigured nameservers in AWS Route 53, scans domain NS records, identifies takeover risks, and tests for DNS hijacking using AWS automation. Link: github.com/tarun776/ZoneS… Aditya Shende Emad Shanab - أبو عبد الله

Deep Subdomain discovery through alterations and permutations : cat subdomainlist.txt | dnsgen -w wordlist.txt - | puredns -r resolvers.txt Aditya sharma 🇮🇳 Aditya Shende sudi Emad Shanab - أبو عبد الله

SubSniper - Subdomain Takeover Checker chrome extension SubSniper to check subdomains for potential takeover vulnerabilities. It uses body fingerprinting to alert you when a subdomain is vulnerable to takeover github.com/tarun776/SubSn… sudi Aditya sharma 🇮🇳

Sudo -rf * 😅😅

Follow for more on facebook : facebook.com/share/15a7juV8…

😅

📷 XSS Challenge Solution Recently, I tweet a small XSS challenge, and today I’m sharing its solution! 📷 In this video, I demonstrate how to bypass < and > filters to exploit a vulnerability caused by a misused function named "include" in the code. Poc: facebook.com/share/v/1BhCau…

When you search for your password on Have I Been Pwned, it gets saved there, meaning you've been pwned 😅🤣👀💻😂 Intigriti Coy Emerald (Yunus) 🇳🇬🇺🇦

الحمد لله♥️ I got my first 2 bounty rewards from Standoff365 (1 public, 1 private). Still got accepted reports pending, including a High severity in the platform itself! Great experience with their professional and respectful teams. 🔗 standoff365.com/en-US/profile/… #infosecurity

Bug Bounty Cheat Sheet File Upload Extension Splitting

Welcome to XSS Under Siege — an advanced-level XSS challenge designed to push your skills to the limit. 📷Challange Link := > …cf-48b4-d911-485e-2721.ngrok-free.app sudi Aditya sharma 🇮🇳

Nice list of non-latin alphabet payloads by Yassin Mohamed github.com/yassinmohamed1…

👿👿After a long time, finally got a Pwn again! 💀💻 This time it’s a Windows WebApp RCE 🧠⚡ Feels great to get that exploit adrenaline back! 🚀 #BugBounty #RCE #HackerVibes #HackTrainingHackers TrainingHack Training

Use NextJS? Recon ✨ A quick way to find "all" paths for Next.js websites: DevTools->Console console.log(__BUILD_MANIFEST.sortedPages) javascript​:console.log(__BUILD_MANIFEST.sortedPages.join('\n')); Cred = linkedin.com/in/0xsojalsec?… #infosec #cybersec #bugbountytips