Hey everyone! I can’t believe I’m saying this, but we’ve just crossed over 21K subscribers on the channel! 🎉
Honestly, I’m so grateful to each and every one of you. Your support, comments, and just being here means the world to me. This journey has been an incredible ride, and I couldn’t have done it without you all cheering me on. Thank you for being part of this adventure—I appreciate you more than words can say!
Honestly, I’m so grateful to each and every one of you. Your support, comments, and just being here means the world to me. This journey has been an incredible ride, and I couldn’t have done it without you all cheering me on. Thank you for being part of this adventure—I appreciate you more than words can say!
❤38❤🔥1🔥1👏1
This media is not supported in your browser
VIEW IN TELEGRAM
Working on this new video! I am sure you all will love it....
🔥20❤1
Just finished up the video! Will be releasing tomorrow, I am pretty sure you all will learn something valuable from it
❤20
Hi everyone, The new video is out!
Learn how to chain reflected xss with cors misconfiguration to increase its impact
Video Link: https://www.youtube.com/watch?v=Rz44oTCxULs
Learn how to chain reflected xss with cors misconfiguration to increase its impact
Video Link: https://www.youtube.com/watch?v=Rz44oTCxULs
YouTube
Chaining Vulnerabilities: Reflected XSS + CORS = More Impact!! | Live Demonstration | 2024
In this video, I’ll walk you through how to chain reflected XSS with CORS misconfigurations to amplify the overall impact of your findings. By combining these vulnerabilities, we can demonstrate more severe consequences, which can often lead to higher bounties.…
👍10❤6
I still remember the time(2020)when I had no laptop/pc so I used to run kali linux on my Android device to learn hacking & pen testing.
And now, 4 years later: I have three awesome laptop with each of them hazing unique use cases!
(The one at the top is my first laptop and it is really priceless to me)
I would really like to thank God, my parents, all of my fellow subscribers on BePractical and telegram members here for supporting me throughout my journey! ❤️
And now, 4 years later: I have three awesome laptop with each of them hazing unique use cases!
(The one at the top is my first laptop and it is really priceless to me)
I would really like to thank God, my parents, all of my fellow subscribers on BePractical and telegram members here for supporting me throughout my journey! ❤️
❤59👍6👏6❤🔥1
Found XSS by bypassing the misconfigured CSP in one of the govt website of India!
Tip: Check out this new amazing tool that will be very useful in fuzzing interesting payloads, tags & events that will be useful when bypassing waf or csp (https://github.com/Asperis-Security/xssFuzz)
Tip: Check out this new amazing tool that will be very useful in fuzzing interesting payloads, tags & events that will be useful when bypassing waf or csp (https://github.com/Asperis-Security/xssFuzz)
👍22👏1
#Discussion 1: How can you start in bug bounty?
(Comment down your thoughts on how can be begin the hunting journey & let's start discussion on it!)
(Comment down your thoughts on how can be begin the hunting journey & let's start discussion on it!)
👍9💋1
This media is not supported in your browser
VIEW IN TELEGRAM
POV: It's late at night.. Your internet pack has just expired.. So you hacked your neighbors WiFi
#hackerman😎
#hackerman😎
😁19🤣6🐳2👍1🔥1
Discussion #2: Which is the tool that you commonly use when doing web recon?
(Comment it down below)
For me it's Ffuf
(Comment it down below)
For me it's Ffuf
❤9👍1
Hi everyone! New video will be releasing tomorrow!(btw i have tried something new on this video so please let me know in the comments if this new format feels nice✌️)
Thanks for all your support!❤
Thanks for all your support!❤
❤11
Hi everyone, New video is out!
Check out how i was able to bypass content security policy(csp) on a live target!
Video Link: https://www.youtube.com/watch?v=Hz6zfXMdl54
Check out how i was able to bypass content security policy(csp) on a live target!
Video Link: https://www.youtube.com/watch?v=Hz6zfXMdl54
YouTube
Live XSS Exploit: Using XSSFuzz to Break CSP on a Real Target!
In this video, I demonstrate how to exploit a live target using a powerful tool called XSSFuzz to uncover XSS vulnerabilities through a misconfigured CSP (Content Security Policy). Watch as I take you step-by-step through the process, revealing how XSSFuzz…
❤12👍4
#Discussion 3:
You are given these two targets to find vulnerabilities
api.test.com (homepage returns 403)
test.com(returns a static web app)
What will be your methodology??
(Comment your approach below!)
You are given these two targets to find vulnerabilities
api.test.com (homepage returns 403)
test.com(returns a static web app)
What will be your methodology??
(Comment your approach below!)
❤8
#Discussion 4: What's the most underrated tool that you would recommend to bug bounty hunters?
❤3