xargs -a domain -I@ -P500 sh -c 'shuffledns -d "@" -silent -w words.txt -r resolvers.txt' | httpx -silent -threads 1000 | nuclei -t /root/nuclei-templates/ -o re1 💀 Nuclei by ProjectDiscovery ProjectDiscovery #bugbounty #bugbountytips

#learn365 Day-1: 2FA Bypass Techniques 1. Response Manipulation - In response if "success":false, change it to "success":true 2. Status Code Manipulation - If Status Code is 4xx, try to change it to 200 OK and see if it bypass restrictions. (1/n) #bugbountytips

#learn365 Day-10: Abusing Hop-by-Hop Headers Original Work: nathandavison.com/blog/abusing-h… Hop-by-hop headers, which are meaningful only for a single transport-level connection, and are not stored by caches or forwarded by proxies. #bugbountytips #appsec #infosecurity (1/n)

Mobile App Pentesting collection:- CC i github.com/kyawthiha7/Mob… github.com/tsug0d/Android… github.com/997509/pentest… github.com/OWASP/owasp-ms… github.com/SnollyG0st3r/a… github.com/SnollyG0st3r/a… github.com/jdonsec/AllThi…

Nuclei Templates v8.2.3 release 🔉🔉 𝗡𝘂𝗺𝗯𝗲𝗿 𝗼𝗳 𝗻𝗲𝘄𝗹𝘆 𝗮𝗱𝗱𝗲𝗱 𝘁𝗲𝗺𝗽𝗹𝗮𝘁𝗲𝘀: 37 𝗧𝗲𝗺𝗽𝗹𝗮𝘁𝗲𝘀 𝗰𝗵𝗮𝗻𝗴𝗲𝗹𝗼𝗴: github.com/projectdiscove… #hackwithautomation #pentest #cybersecurity #bugbounty

Nuclei Templates Collection:- github.com/pikpikcu/nucle… github.com/esetal/nuclei-… github.com/panch0r3d/nucl… github.com/ARPSyndicate/k… github.com/medbsq/ncl github.com/notnotnotveg/n… github.com/foulenzer/foul… github.com/clarkvoss/Nucl… github.com/z3bd/nuclei-te…

🤖 Introducing Security By Design New courses on the Google Play Academy for teaching you: * How to add security to your app development lifecycle * How to use Android's built-in security features * and more By @jonmarkoff and team security.googleblog.com/2021/05/introd…

Hi TJ 🇺🇦🇨🇦. I discovered a critical vulnerability on the apex.sh site. I couldn't find an email address for security contacts. Also I cannot write you DM. I will be happy to tell you the details of the problem. Please contact me.

Real life recursion: mediation request requires a mediation request because the mediation group of #hackerone is not responding.

I just released the new episode with John Hammond 🔥 We talked about his experience, career path, ransomware attacks, Kaseya incident and other topics. The episode is sponsored by Yogosha ❤️ You can watch the EP from here: bit.ly/3oJ5UqQ #Infosec #RadioHack

I am grateful to this year and what it brought me. I have submitted 6 times more vulnerabilities than last year, and increased my reputation 3 times compared to last year. In addition, I ranked first in my country on H1. But I know there is still a lot of hard work to be done.

Articles worth reading discovered last week: 🗞 blog.pksecurity.io/2023/01/16/202… 🗞 about.gitlab.com/blog/2023/01/2… 🗞 blog.viettelcybersecurity.com/saml-show-stop… 🗞 synacktiv.com/sites/default/… 🗞 blog.assetnote.io/2023/01/24/yel… 🗞 pathonproject.com/zb/?196945362f… 🗞 github.blog/2023-01-27-byp… #PentesterLabWeekly

(CVE-2023-32530) Trend Micro Apex Central 2019 (<= Build 6016) Authenticated RCE Well.. This is an unusual SQLi vector starlabs.sg/advisories/23/…

When you get a ping back for a potential SSRF It’s not your IP address It’s not your targets IP address

we've officially reached AGI

I recently developed and posted about a technique called "First sequence sync", expanding James Kettle's single packet attack. This technique allowed me to send 10,000 requests in 166ms, which breaks the packet size limitation of the single packet attack. flatt.tech/research/posts…

A XSS payload in JS context for WAF bypass, by LIL NIX ''.replace.call`1${/.../}${alert}`

I just found the coolest csp bypass ever! did you know that a valid pdf can ALSO be valid javascript? (details below)

While playing a challenge by Salvatore Abello, I found a pretty interesting way to exploit Dangling Markup with a strict CSP. All you need is an <iframe>, <object> or <embed> set to about:blank, with a dangling name= attribute. This vulnerable page should be iframable.

We hacked the AWS JavaScript SDK, a core library powering the entire @AWScloud ecosystem - including the AWS Console itself 🤯 How did we do it? Just two missing characters was all it took. This is the story of #CodeBreach 🧵👇