Malware family #gh0strat #purplefox found using Google typosquat domain to distribute it. google[.]oismdew[.]top MD5 : 93f76162d13675c3d2171237017b01ba ref: linkedin.com/posts/mohit-ku… #CTI #threatintel #CyberSecurity #OSINT #malware

🇰🇵Catching DPRK with Korean Linguistic Traits🇰🇵 Recently I have been approached by a few people on how to identify and attribute malware to DPRK. Everyone of us in the CTI field knows how difficult attribution is, and while I cant provide you with something like: "Because the bad

cat dom.txt | gau --blacklist js,pdf,docx,xlsx,css,ico,jpg,jpeg,png,bmp,svg,img,gif,mp4,flv,ogv,webm,webp,mov,mp3,m4p,scss,tif,tiff,ttf,otf,woff,woff2,bmp,ico,eot,htc,rtf,swf,image --fc 404,302 --threads 5 --subs | sed ‘s/=.*/=/’ | urless | uro | anew urls.txt #bugbountytips

Excited to contribute to this guide on mapping API paths and hunting vulnerabilities using JS files! 🚀 Check it out on LinkedIn: linkedin.com/posts/hackenpr… #BugBounty #Cybersecurity #Pentesting

subfinder -d domain[.]com -silent | waybackurls | gf redirect | qsreplace 'http://example[.]com' | httpx -fr -title -mr 'Example Domain'

Check Burp Proxy History Tab For Leak Secrets, Tokens and More (?i)([a-z0-9]+){0,}((_|-){0,}(\\s){0,})(key|pass|credentials|auth|cred|creds|secret|password|access|token|api)(\\s){0,}(=|:|is|>){1,} Instead of searching manually in history one click with good regex's.

🚀 New Repository Alert! 🐞 I've shared my techniques to bypass 403 and 401 restrictions along with random bug bounty tips and tricks! 🛠️ 🔗 Check it out: github.com/sabir789/BugBo… #bugbountytips #cybersecuritytools Jayesh Madnani Md Ismail Šojal 🕷️ Tib3rius

Own method for bypassing 403 and 401

The power of a good wordlist 🔥 Just found an excessive data exposure only with dirbusting with an Arabic wordlist! I'm starting to share my dedicated languages wordlist, soon I share more. Check it out 🤑 #bugbountytips #BugBounty #Hacking github.com/r3dpower/Langu…

Simple strings heapdump | grep username strings heapdump | grep "aws key format"

I love Bonuses ❤️

.DS_Store Credit

🚨 Lumma 2024: Dominating the Info-Stealer Market 🚨 📖 Read the full blog here: medium.com/@s.lontzetidis… #CyberThreatIntelligence #Lumma #LummaStealer #ThreatResearch #Infostealer

Digital Psyops operation from Pakistan, China and Bangladesh After the #PahalgamTerrorAttack Link to Read : Part 1:-medium.com/@bugtest252/ne… Part 2:- medium.com/@bugtest252/ne… #PsyOps #StealthMole #ThreatIntelligence #OSINT #Malware #Pakistan #China #Bangladesh #CyberSecurity

Just uncovered a massive scam network using fake D-Mart ads on Facebook to spread phishing sites & Android malware. Malware hides in thank-you.php pages. Full breakdown medium.com/@bugtest252/ma… #CyberSecurity #Malware #phishing #threatintel #ScamAlert