add this file to your wordlist `.gitlab-ci.yml` , enjoy
its contain a database username and password
By:@NoRed0x
#bugbounty #bugbountytips
its contain a database username and password
By:@NoRed0x
#bugbounty #bugbountytips
❤5👍1
chrome_2PdqXXPfb9.png
128.7 KB
Please open Telegram to view this post
VIEW IN TELEGRAM
👍3❤2
3 million dollars Methodology Santiago Lopez.pdf
469.9 KB
$3 million dollars Methodology! [Santiago Lopez]
❤4😭3👍1
LucasFaudman_apkscan_Scan_for_secrets,_endpoints,_and_other_sensitive.mov
3.7 MB
#bugbounty #bugbountytips
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥8
🚨 Depix 👉 It is a free and open-source tool used for image steganography, specifically for extracting hidden data from images.
🔗Download : https://github.com/spipm/Depix
#bugbounty #bugbountytips
🔗Download : https://github.com/spipm/Depix
#bugbounty #bugbountytips
❤2🔥2
Discover more subdomains during your recon by extracting subdomains from TLS certificates. Integrate Cero into your recon automation for better results.
https://github.com/glebarez/cero
https://github.com/glebarez/cero
🔥5👍2
Mastering Online Cameras Searching 📹
Intrigued by global events? Live cameras offer a solution. Millions of Internet-connected devices worldwide provide real-time views of live events, like public gatherings and conflicts💥
IoT search engines, Google dorking, and niche websites: learn how to search online cameras around the world 🔎
👉 Read now: https://netlas.io/blog/find_online_cameras/
✅ Sign Up Now on @netlas- https://app.netlas.io/ref/9cc61538/
Intrigued by global events? Live cameras offer a solution. Millions of Internet-connected devices worldwide provide real-time views of live events, like public gatherings and conflicts💥
IoT search engines, Google dorking, and niche websites: learn how to search online cameras around the world 🔎
👉 Read now: https://netlas.io/blog/find_online_cameras/
Please open Telegram to view this post
VIEW IN TELEGRAM
netlas.io
Mastering Online Camera Searches - Netlas Blog
A guide on how to find exposed webcams anywhere in the world. Techniques, tools, and best practices. Examples of searching for the most popular devices.
❤2👍2
🚀CRLFsuite - CRLF injection scanner 🚀
👉 The most powerful CRLF injection (HTTP Response Splitting) scanner.
🔗 Download : https://github.com/Raghavd3v/CRLFsuite
👉 The most powerful CRLF injection (HTTP Response Splitting) scanner.
🔗 Download : https://github.com/Raghavd3v/CRLFsuite
GitHub
GitHub - Raghavd3v/CRLFsuite: The most powerful CRLF injection (HTTP Response Splitting) scanner.
The most powerful CRLF injection (HTTP Response Splitting) scanner. - Raghavd3v/CRLFsuite
🔥6
This media is not supported in your browser
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
👍14❤7
#BugBounty #bugbountytips #vulnerability
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1
Please open Telegram to view this post
VIEW IN TELEGRAM
YouTube
WebLogic Server Unauthenticated RCE via GET request | CVE 2020-14882 | Brut Security
CVE 2020-14882
https://www.exploit-db.com/exploits/49479
https://www.exploit-db.com/exploits/49479
👍4
Add 'app/config/config.local.neon' to the wordlist, and maybe you will get juicy data.
By: @NoRed0x
#bugbountytips #bugbountytip
By: @NoRed0x
#bugbountytips #bugbountytip
👌5❤2👍1
#bugbountytips
Please open Telegram to view this post
VIEW IN TELEGRAM
👍4❤1🔥1