#BurpHacksForBounties - Hack 11/30
We mostly use PortSwigger 's Burp Suite pro for corporate pentesting, & we should not capture and store corporate credentials.
Steps that I use and why is it important: 👇
#infosec #appsec #burp #Burpsuite
We mostly use PortSwigger 's Burp Suite pro for corporate pentesting, & we should not capture and store corporate credentials.
Steps that I use and why is it important: 👇
#infosec #appsec #burp #Burpsuite
#BurpHacksForBounties - Day 12/30
IPtables + Burp Suite + Android Applications. 😍🤓🤫😀
Tricky and length but worth setting up.
#burp #bugbountytips #infosec #security #appsec #bugbountytip
IPtables + Burp Suite + Android Applications. 😍🤓🤫😀
Tricky and length but worth setting up.
#burp #bugbountytips #infosec #security #appsec #bugbountytip
#BurpHacksForBounties - Day 13/30
How to use Burp in most efficient way and bag a bounty.
In Bug bounty methodology by Uncle Rat (@theXSSrat) :
https://thexssrat.iss.onedium.com/bug-bounty-methodology-v3-0-hunt-like-a-rat-9e030fc54363
#infosec #appsec #bugbounty #bugbountytips
How to use Burp in most efficient way and bag a bounty.
In Bug bounty methodology by Uncle Rat (@theXSSrat) :
https://thexssrat.iss.onedium.com/bug-bounty-methodology-v3-0-hunt-like-a-rat-9e030fc54363
#infosec #appsec #bugbounty #bugbountytips
#BurpHacksForBounties - Tip 14/30
Burp Suite Config provides options for handling configurations for User-level and project-level options.
I personally use this configuration :
#appsec #infosec #burp #bugbountytips #bugbountytip
Burp Suite Config provides options for handling configurations for User-level and project-level options.
I personally use this configuration :
#appsec #infosec #burp #bugbountytips #bugbountytip
Port Forwarding & Tunnelling Cheatsheet
https://www.hackingarticles.in/port-forwarding-tunnelling-cheatsheet/
#infosec #ctf #oscp #pentest #cybersecurity
https://www.hackingarticles.in/port-forwarding-tunnelling-cheatsheet/
#infosec #ctf #oscp #pentest #cybersecurity
Hacking Articles
Port Forwarding & Tunnelling Cheatsheet
Comprehensive Port Forwarding and Tunnelling Cheatsheet covering SSH, Metasploit, Socat, and more for secure connections.
#BurpHacksForBounties - Day 15/30
Macros in Burp Suite by akshita_infosec. I could not have explained it better than she did. Nice work :)
https://akshita-infosec.medium.com/burp-macros-what-why-how-151df8901641
#infosec #appsec #bugbounties #bugbountytips #burp
Macros in Burp Suite by akshita_infosec. I could not have explained it better than she did. Nice work :)
https://akshita-infosec.medium.com/burp-macros-what-why-how-151df8901641
#infosec #appsec #bugbounties #bugbountytips #burp
#BurpHacksForBounties - Tip 16/30
Host Header Hacks with Burp Suite's repeater. For webserver, serving requests through reverse proxy, don't forget to try this technique out. Learnt from @lbinowax
Quick read and How to 👇🏼
#infosec #appsec #burp #bugbounties #bugbountytips
Host Header Hacks with Burp Suite's repeater. For webserver, serving requests through reverse proxy, don't forget to try this technique out. Learnt from @lbinowax
Quick read and How to 👇🏼
#infosec #appsec #burp #bugbounties #bugbountytips
#BurpHacksForBounties - Day 18/30
Do you want to filter the responses in Burp Suite Intruder? And only show the ones which have specific pattern present in response?
If yes try this 👇🏻 🧵
#appsec #infosec #bugbountytips #bugbountytip #burp
Do you want to filter the responses in Burp Suite Intruder? And only show the ones which have specific pattern present in response?
If yes try this 👇🏻 🧵
#appsec #infosec #bugbountytips #bugbountytip #burp
#BurpHacksForBounties - Tip 19/30
Adding your own scan rules to Burp Suite active/passive scanner. Include custom checks in scanner for #bugbounties without writing a single line of code.
Using a plugin developed by @BurpBounty @egarme
#infosec #appsec #burp #bugbountytips
Adding your own scan rules to Burp Suite active/passive scanner. Include custom checks in scanner for #bugbounties without writing a single line of code.
Using a plugin developed by @BurpBounty @egarme
#infosec #appsec #burp #bugbountytips