Brut Security

☄️SubCerts is an automated tool designed to extract subdomains from certificate transparency logs using the crt.sh API. This tool is able to identify subdomains of a target domain by leveraging publicly available certificates.

⚠️

https://github.com/0xJin/SubCerts

Please open Telegram to view this post

VIEW IN TELEGRAM

👍27🔥11🫡8❤2

4.28K views04:36

Brut Security

📈

📉

Your one Reaction is my reason to post such contents.

Please open Telegram to view this post

VIEW IN TELEGRAM

👍55🫡18🔥10🗿4❤2👨‍💻1

3.84K views08:50

Brut Security

🔒

Bug Bounty Tip: Algolia API Key Exposure Can Lead to Web Log Access with CRUD Permissions

⭐️If an Algolia API key is exposed, it may allow access to search logs with Create, Read, Update, and Delete (CRUD) privileges. This can reveal user queries and other sensitive data.

🔍 Tip: Always inspect main.js files for exposed keys.

#bugbountytip #bugbounty #infosec #hacking #hacker

Please open Telegram to view this post

VIEW IN TELEGRAM

❤13👍7🔥3

4.09K viewsedited 14:50

Brut Security

CTF Search with 24k+ CTF writeups, covering everything from web exploitation to reverse engineering. Check it out!

- ctfsearch.hackmap.win

#infosec #cybersec #bugbountytips

20🔥22❤6👍2

4.53K views17:57

Brut Security

Bleach's Bug Bounty Blues

🫡6❤3🤣2👍1

4.15K viewsMr Rahim, 06:35

Brut Security

❤11🗿7

4.06K viewsMr Rahim, 06:35

Brut Security

Computer Networking Notes .pdf

1.2 MB

🗿3👍2

4.1K views07:26

Brut Security

☄️wappalyzer-next - wappalyzer alternative based on wappalyzer browser extension.

⚡️

170+ new technologies added in the latest update of wappalyzer, grab it!

⌨️

https://github.com/s0md3v/wappalyzer-next

Please open Telegram to view this post

VIEW IN TELEGRAM

👍12❤4🔥3🤔1

4.29K views11:41

Brut Security

⚡️

Exclusive Collection of Private Nuclei Templates

1. Akokonunes
2. Emadshanab
3. BoobooHQ
4. SirBugs
5. Linuxadi
6. 0xKayala
7. Bhataasim1
8. H0tak88r

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥28👍3🐳2🗿2

4.09K views03:28

Brut Security

Want to learn more about Oauth bugs?

Here's a detailed writeup by @Doyensec on Oauth vulns like:

- Redirect Scheme Hijacking
- Scope Upgrade
- Client Confusion
- Mutable Claims

https://blog.doyensec.com/2025/01/30/oauth-common-vulnerabilities.html

#bugbounty #bugbountytips

👍12❤3

4.37K views04:46

Brut Security

Bypassing File Upload Restrictions on Xiaomi Using

.extensions./%00.png

Method _BUG BOUNTY POC_

https://t.iss.one/brutsecurity_poc/40

👍7🐳2🗿2

4.07K views10:39

Brut Security

Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulnerabilities, and potential risks within JavaScript files on websites.
-> GitHub.com/VFA250/Morgan

🔥11❤4👍3

4.26K views11:11

Brut Security

☄️

Search Engine for Bug Bounty Hunters
- https://nitinyadav00.github.io/Bug-Bounty-Search-Engine/

Please open Telegram to view this post

VIEW IN TELEGRAM

👍16🔥5🤔3

4.62K views14:27

Brut Security

Go and Read 😂

😂

https://x.com/malwrhunterteam/status/1889005922694975832?s=46&t=GxBcd0lJbjtL_W3TmBw-tA

Please open Telegram to view this post

VIEW IN TELEGRAM

🤣6👍2

4.31K views18:34

Brut Security

📊

Vulnerable Bank - An intentionally vulnerable application built for learning secure code reviews and to test api pentesting skills.

🖥

https://github.com/Commando-X/vuln-bank

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥14👍5😱3

4.41K views04:55

Brut Security

Start solving and share your writeup with our community members in discussions group.

https://t.iss.one/brutsec

Discussion

Community Discussion

4.14K views04:59

Brut Security

This media is not supported in your browser

VIEW IN TELEGRAM

3.96K views04:59

Brut Security

🔖

A useful one-liner that extracts all API endpoints from AngularJS and Angular JavaScript files.

curl -s URL | grep -Po "(\/)((?:[a-zA-Z\-_\:\.0-9\{\}]+))(\/)*((?:[a-zA-Z\-_\:\.0-9\{\}]+))(\/)((?:[a-zA-Z\-_\/\:\.0-9\{\}]+))" | sort -u

Please open Telegram to view this post

VIEW IN TELEGRAM

❤19🔥5🗿4👍2👏2🐳2

4.55K views08:59

Brut Security

🚨Google Dorks🚨

These are awesome dorks that may lead you to great findings when testing an application or doing bug bounty hunting.

🔥20👍3

4.66K views14:23

Brut Security

𝗣𝗮𝘆𝗹𝗼𝗮𝗱 𝗪𝗶𝘇𝗮𝗿𝗱 🤖 - AI assistant that utilizes GPT-3.5 and GPT-4 language models to interpret and generate cybersecurity payloads.

🔗 payload-wizard.vercel.app

👍11🔥4

4.35K views04:22

Brut Security

https://swisskyrepo.github.io/InternalAllTheThings/

swisskyrepo.github.io

Internal All The Things

Active Directory and Internal Pentest Cheatsheets

👍6🔥2

3.93K views05:37

About

Blog

Apps

Platform