SQLi Tip - If you're able to find a JSON POST-based potential SQL injection (SQLi), remember to execute the SQLMAP query with -u and --data using JSON input. I've found more success using this method in SQLMap than when using a request file. #BugBounty #SQLi

Introductory Networking - I have just completed this room! Check it out: tryhackme.com/room/introtone… #tryhackme #Networking #OSI #NetworkingTools #BeginnerPath #Beginner #IntroductoryNetworking

How do you find those interesting subdomains during recon? 🤔️ 😎

Finding origin IP can pave way for you to get good bounties and make $$$$ Here’s how you can find the origin IP of a server 👇

bugcrowd Who’s asking about what wordlist I use I use mostly github.com/orwagodfather/… and github.com/six2dez/OneLis… Important note all the time update your wordlist manually by adding interesting endpoints / dirs that you have

Few vulnerabilities to look for while testing modern web applications. #bugbounty 1) Access control and IDOR : pull api routes from javascript files and wayback javascript. documentation and wayback documentation.

I got my highest bounty ,max payout was 3k$ but they paid me bonus for impact . I'm really grateful for bug bounty community and amazing peoples whom i learned with. #bugbounty