Awesome Extensions : https://github.com/snoopysecurity/awesome-burp-extensions
Awesome Burp Shortcut cheetsheat : https://www.sans.org/posters/burp-suite-cheat-sheet/ by
@ChrisADale
Simple config : https://gist.github.com/jgamblin/104f15a265e2ab007bae19cb37aa606d by
@jgamblin
Awesome Burp Shortcut cheetsheat : https://www.sans.org/posters/burp-suite-cheat-sheet/ by
@ChrisADale
Simple config : https://gist.github.com/jgamblin/104f15a265e2ab007bae19cb37aa606d by
@jgamblin
GitHub
GitHub - snoopysecurity/awesome-burp-extensions: A curated list of amazingly awesome Burp Extensions
A curated list of amazingly awesome Burp Extensions - snoopysecurity/awesome-burp-extensions
This media is not supported in your browser
VIEW IN TELEGRAM
#BurpHacksForBounties - Day 24/30
This is an amazing writeup which talks about using plugin in Burp that ease the journey for catching IDORs.
Writeup link: https://infosecwriteups.com/leveraging-burp-suite-extension-for-finding-idor-insecure-direct-object-reference-2653f9b89fd4
By
@dhanush
#infosec #appsec #bugbountytips #bugbountytip #bugbounty #security
This is an amazing writeup which talks about using plugin in Burp that ease the journey for catching IDORs.
Writeup link: https://infosecwriteups.com/leveraging-burp-suite-extension-for-finding-idor-insecure-direct-object-reference-2653f9b89fd4
By
@dhanush
#infosec #appsec #bugbountytips #bugbountytip #bugbounty #security
Fantastic Windows Logon types and Where to Find Credentials in Them
https://www.alteredsecurity.com/post/fantastic-windows-logon-types-and-where-to-find-credentials-in-them
#windwows #credential
https://www.alteredsecurity.com/post/fantastic-windows-logon-types-and-where-to-find-credentials-in-them
#windwows #credential
Altered Security
Fantastic Windows Logon types and Where to Find Credentials in Them
Hello All,In this blog post we will explore and learn about various Windows Logon Types and understand how are these logon type events are generated. We will also see if we can extract credentials from individual logon types. We will be using our Active Directory…
#BurpHacksForBounties - Day 25/30
Optimizing Burp Suite for better performance, these 4 simple steps and you would notice a big difference in performance.
#infosec #appsec #burp #security #bugbountytips #bugbounty
Optimizing Burp Suite for better performance, these 4 simple steps and you would notice a big difference in performance.
#infosec #appsec #burp #security #bugbountytips #bugbounty
RemotePotato — Updated version (Cross session activation)
https://github.com/antonioCoco/RemotePotato0
#windows #privesc #lpe #pentest
https://github.com/antonioCoco/RemotePotato0
#windows #privesc #lpe #pentest
GitHub
GitHub - antonioCoco/RemotePotato0: Windows Privilege Escalation from User to Domain Admin.
Windows Privilege Escalation from User to Domain Admin. - antonioCoco/RemotePotato0
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
# https://github.com/aquasecurity/kube-bench
#k8s #YAML #KubeBench #KubernetesSecurity #cisSecurity #Kubernetes
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
# https://github.com/aquasecurity/kube-bench
#k8s #YAML #KubeBench #KubernetesSecurity #cisSecurity #Kubernetes
GitHub
GitHub - aquasecurity/kube-bench: Checks whether Kubernetes is deployed according to security best practices as defined in the…
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark - aquasecurity/kube-bench
#BurpHacksForBounties - Day 26/30
Красное сердцеUnderstand the different intruder attack types in Burp Suite
With visualizations at code level for better understanding.
Code level understanding in follow up thread 👇
#infosec #appsec #security #cybersecurity #bugbounty #bugbountytips
Красное сердцеUnderstand the different intruder attack types in Burp Suite
With visualizations at code level for better understanding.
Code level understanding in follow up thread 👇
#infosec #appsec #security #cybersecurity #bugbounty #bugbountytips
Understanding from code is way more easier than a paragraph full of description. Let me know if I miss anything.
Share if you like and think if others can get benefit from this.
Share if you like and think if others can get benefit from this.
#BurpHacksForBounties - 27/30
See all different intruder attack types of Burp Suite as codes
- Sniper
- Battering RAM
- Cluster Bomb
- PitchFork
#infosec #appsec #bugbounty #bugbountytips #security #burp
See all different intruder attack types of Burp Suite as codes
- Sniper
- Battering RAM
- Cluster Bomb
- PitchFork
#infosec #appsec #bugbounty #bugbountytips #security #burp