Upgrading XSS Hunter with a basic reverse JavaScript shell Reverse shell interfaceBefore you start reading this article, please keep in mind that this is a ver... 2021-05-13 18:29:18 | 阅读: 231 | 收藏 | infosecwriteups.com reverse php payload victim clicked

Understanding and exploiting HTTP for bug bounty wikibit.itWhenever we open a browser and search something on the internet we make an HTTP request.Bu... 2021-05-11 15:15:58 | 阅读: 146 | 收藏 | infosecwriteups.com proxy burp repeater amazing software

My Bug Bounty Journey & Ranking 1st in U.S. DoD & Achieving top 100 hackers in 1 year My Bug Bounty Journey & Ranking 1st in U.S. DoD & Achieving top 100 hackers in 1 yearHello,My name i... 2021-05-11 13:06:58 | 阅读: 141 | 收藏 | infosecwriteups.com dod hackerone reputation bounties 1st

Recon Methodology for Bug Hunting ! What is Reconnaissance or information gathering?It refers to the process of collecting as much infor... 2021-05-09 04:06:29 | 阅读: 162 | 收藏 | infosecwriteups.com dorking gathering nmap network subdomain

Reckon-ng : Backbone of Osint Analysis Every Pentester targets the information of the client he wants to attack. Thus OSINT Analysis came t... 2021-05-09 04:05:17 | 阅读: 165 | 收藏 | infosecwriteups.com reckon workspaces analysis alma client

XSS Through Parameter Pollution Hi everyone,I am Saajan Bhujel.Student of Bachelor of Commerce(B.Com) and also I am a Bug Bounty Hun... 2021-05-06 03:12:37 | 阅读: 147 | 收藏 | infosecwriteups.com bypass pollution malicious bing subdomain

How to Route all your traffics through TOR in Kali Linux May be Linux Arch without using TOR… 2021-05-06 02:08:45 | 阅读: 205 | 收藏 | infosecwriteups.com torghost repository github network python

Nailing automation with Bash: Core concepts and implementations Source: Google imagesHi homies, I hope you all are doing great and learning new things daily. Recent... 2021-05-03 11:35:16 | 阅读: 193 | 收藏 | infosecwriteups.com oneliner liner liners httpx xargs

Getting started in bug bounty Getting started in bug bountyHey, Amazing Hackers!So for today, I am going to talk about How you guy... 2021-05-03 04:47:16 | 阅读: 173 | 收藏 | infosecwriteups.com guys security hunt

RCE via Internal Access to Adminer Database Management (Critical) Hello,My name is Ahmad Halabi, I do bug bounty hunting on my free time. I mainly hunt on HackerOne.I... 2021-05-02 20:55:16 | 阅读: 282 | 收藏 | infosecwriteups.com adminer database forbidden 403

Solution for Terjanq x Intigriti’s 0421 challenge This month’s Intigriti challenge was made by the amazing Terjanq. He made a cool write-up himself he... 2021-05-01 03:51:08 | 阅读: 203 | 收藏 | infosecwriteups.com attacker postmessage comparisons intigriti bigger

Email Verification Bypass- A Strange Case! Hey, What’s Up Fellow Hackers, hope you are staying safe and utilizing this (WFH or Online Classes )... 2021-04-30 17:07:27 | 阅读: 158 | 收藏 | infosecwriteups.com boom bypass chose attacker exif

$100 My First Bug Bounty for DOS Hello Amazing Hackers,Hope you guys Doing well and hunting lots of bugs and Dollars !Well, let’s sta... 2021-04-30 16:06:53 | 阅读: 268 | 收藏 | infosecwriteups.com signup hashing limitations hactivity

XXE : From Zero to Hero Hello fellow hackers, I hope you all are doing good and learning something new :) . As i said in my... 2021-04-30 16:06:50 | 阅读: 283 | 收藏 | infosecwriteups.com passwd band malicious x25 attacker

All about cross-site scripting (XSS) Hello Amazing Hackers,Hope you guys Doing well and hunting lots of bugs and Dollars !Well, let’s sta... 2021-04-26 18:27:14 | 阅读: 178 | 收藏 | infosecwriteups.com client payload xssstored impactful

Hacking GraphQL for Fun and Profit — Part 2— Methodology and Examples GraphQLHello everyone,I am back with another part of the Hacking GraphQL series. We have already gon... 2021-04-26 18:26:40 | 阅读: 181 | 收藏 | infosecwriteups.com identify grades inql mutations

Hacking GraphQL for Fun and Profit — Part 1 — Understanding GraphQL Basics Hello everyone!!In this blog we will be going through some basics of GraphQL to understand technolog... 2021-04-25 21:36:54 | 阅读: 174 | 收藏 | infosecwriteups.com oftype typeref inputvalue directives

How I hacked into India’s top matrimonial website and earned amazon gift card worth 10K INR. Hey friends,Hope you all are safe and good.Don’t know why suddenly I was getting more requests in my... 2021-04-25 21:34:54 | 阅读: 168 | 收藏 | infosecwriteups.com otp burp payload matrimonial forgot

The peculiar case of HTML Injection This is a Writeup for an unusual HTML Injection bug I found on a private bug bounty program.HTML Inj... 2021-04-25 03:59:01 | 阅读: 196 | 收藏 | infosecwriteups.com injection attacker payload chaining

Brave — Stealing your cookies remotely Brave for Android had a vulnerability that allowed a malicious web page to steal your cookies remote... 2021-04-23 18:30:14 | 阅读: 173 | 收藏 | infosecwriteups.com brave malicious download chrome