Brut Security
@brutsecurity
14.7K subscribers
911 photos
73 videos
287 files
967 links
βœ…Queries: @wtf_brut
πŸ›ƒWhatsApp: wa.link/brutsecurity
🈴Training: brutsec.com
πŸ“¨E-mail: [email protected]
Download Telegram
About
Blog
Apps
Platform
Join
Brut Security
14.7K subscribers
Brut Security
🀣26πŸ—Ώ4πŸ‘3🐳3❀2
3.82K views
Brut Security
⚠️Data Breach Alert - OpenAI⚠️

A threat actor claims to be in possession of login credentials (email and password) for 20 million OpenAI accounts.
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ—Ώ25πŸ”₯3😱3πŸ‘1πŸ‘¨β€πŸ’»1
3.9K viewsedited  
Brut Security
πŸ”₯Gourlex is a simple tool that can be used to extract URLs and paths from web pages. It can be helpful during web application assessments to uncover additional targets.

βœ…https://github.com/trap-bytes/gourlex
Please open Telegram to view this post
VIEW IN TELEGRAM
❀13πŸ‘3🐳1
4.35K viewsedited  
Brut Security
πŸ”₯ CRTO Aspirants & Red Teamers – Must-Check Resource!

⚑If you're preparing for the Certified Red Team Operator (CRTO) or want to refine your red teaming skills, this GitHub repo is a goldmine.

https://github.com/h3ll0clar1c3/CRTO
πŸ‘13❀8πŸ”₯3
4.89K views
Brut Security
β˜„οΈβ˜„οΈUser information Leak Vulnerability in GitHub P1 Bug Bounty live __ POC

https://t.iss.one/brutsecurity_poc/39
Please open Telegram to view this post
VIEW IN TELEGRAM
❀13πŸ”₯7πŸ‘1πŸ—Ώ1
3.91K views
Brut Security
Reactions Please πŸ‘€
Please open Telegram to view this post
VIEW IN TELEGRAM
❀18🀝2πŸ‘1
3.88K views
Brut Security
β˜„οΈCVE-2023-34960
Root cause:
- https://github.com/chamilo/chamilo-lms/blob/d24bddb2227d226fdd1bfaa31f51850d7343186a/public/main/webservices/additional_webservices.php#L63
Please open Telegram to view this post
VIEW IN TELEGRAM
❀12πŸ—Ώ4πŸ€”2🐳1
4.04K views
Brut Security
πŸ“š Good collection of cheat sheets, guides and resources on #Pentesting, reverse engineering and exploit dev πŸ›‘οΈ

- https://x0rb3l.github.io/Cyber-Bookmarks/bookmarks.html
πŸ”₯15❀5πŸ‘3πŸ—Ώ2
4.59K views
Brut Security
Advanced Web Hacking.pdf
10.2 MB
NotSoSecure Advanced Web Hacking
πŸ‘13πŸ”₯6
4.64K views
Brut Security
⚑️Misconfig Mapper - A fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets.

β˜„οΈhttps://github.com/intigriti/misconfig-mapper
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ”₯17πŸ‘5
4.28K views
Brut Security
β˜„οΈSubCerts is an automated tool designed to extract subdomains from certificate transparency logs using the crt.sh API. This tool is able to identify subdomains of a target domain by leveraging publicly available certificates.

⚠️https://github.com/0xJin/SubCerts
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ‘27πŸ”₯11🫑8❀2
4.28K views
Brut Security
πŸ“ˆπŸ“‰Your one Reaction is my reason to post such contents.
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ‘55🫑18πŸ”₯10πŸ—Ώ4❀2πŸ‘¨β€πŸ’»1
3.84K views
Brut Security
πŸ”’Bug Bounty Tip: Algolia API Key Exposure Can Lead to Web Log Access with CRUD Permissions

⭐️If an Algolia API key is exposed, it may allow access to search logs with Create, Read, Update, and Delete (CRUD) privileges. This can reveal user queries and other sensitive data.

πŸ” Tip: Always inspect main.js files for exposed keys.

#bugbountytip #bugbounty #infosec #hacking #hacker
Please open Telegram to view this post
VIEW IN TELEGRAM
❀13πŸ‘7πŸ”₯3
4.09K viewsedited  
Brut Security
CTF Search with 24k+ CTF writeups, covering everything from web exploitation to reverse engineering. Check it out!

- ctfsearch.hackmap.win

#infosec #cybersec #bugbountytips
20πŸ”₯22❀6πŸ‘2
4.53K views
Brut Security
Bleach's Bug Bounty Blues
<unknown>
🫑6❀3🀣2πŸ‘1
4.15K viewsMr Rahim
Brut Security
❀11πŸ—Ώ7
4.06K viewsMr Rahim
Brut Security
Computer Networking Notes .pdf
1.2 MB
πŸ—Ώ3πŸ‘2
4.1K views
Brut Security
β˜„οΈwappalyzer-next - wappalyzer alternative based on wappalyzer browser extension.

⚑️⚑️⚑️⚑️170+ new technologies added in the latest update of wappalyzer, grab it!

⌨️https://github.com/s0md3v/wappalyzer-next
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ‘12❀4πŸ”₯3πŸ€”1
4.29K views
Brut Security
⚑️Exclusive Collection of Private Nuclei Templates

1. Akokonunes
2. Emadshanab
3. BoobooHQ
4. SirBugs
5. Linuxadi
6. 0xKayala
7. Bhataasim1
8. H0tak88r
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ”₯28πŸ‘3🐳2πŸ—Ώ2
4.09K views
Brut Security
Want to learn more about Oauth bugs?

Here's a detailed writeup by @Doyensec on Oauth vulns like:

- Redirect Scheme Hijacking
- Scope Upgrade
- Client Confusion
- Mutable Claims

https://blog.doyensec.com/2025/01/30/oauth-common-vulnerabilities.html

#bugbounty #bugbountytips
πŸ‘12❀3
4.37K views
Brut Security
Bypassing File Upload Restrictions on Xiaomi Using
.extensions./%00.png

Method _BUG BOUNTY POC_
https://t.iss.one/brutsecurity_poc/40
πŸ‘7🐳2πŸ—Ώ2
4.07K views