Brut Security
@brutsecurity
14.7K subscribers
910 photos
73 videos
287 files
967 links
โœ…Queries: @wtf_brut
๐Ÿ›ƒWhatsApp: wa.link/brutsecurity
๐ŸˆดTraining: brutsec.com
๐Ÿ“จE-mail: [email protected]
Download Telegram
About
Blog
Apps
Platform
Join
Brut Security
14.7K subscribers
Brut Security
โ˜„๏ธSearch Engine for Bug Bounty Hunters
- https://nitinyadav00.github.io/Bug-Bounty-Search-Engine/
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ‘16๐Ÿ”ฅ5๐Ÿค”3
4.62K views
Brut Security
Go and Read ๐Ÿ˜‚๐Ÿ˜‚
https://x.com/malwrhunterteam/status/1889005922694975832?s=46&t=GxBcd0lJbjtL_W3TmBw-tA
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿคฃ6๐Ÿ‘2
4.3K views
Brut Security
๐Ÿ“ŠVulnerable Bank - An intentionally vulnerable application built for learning secure code reviews and to test api pentesting skills.

๐Ÿ–ฅhttps://github.com/Commando-X/vuln-bank
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ”ฅ14๐Ÿ‘5๐Ÿ˜ฑ3
4.41K views
Brut Security
Start solving and share your writeup with our community members in discussions group. https://t.iss.one/brutsec
Telegram
Discussion
Community Discussion
4.14K views
Brut Security
This media is not supported in your browser
VIEW IN TELEGRAM
3.96K views
Brut Security
๐Ÿ”–A useful one-liner that extracts all API endpoints from AngularJS and Angular JavaScript files.

curl -s URL | grep -Po "(\/)((?:[a-zA-Z\-_\:\.0-9\{\}]+))(\/)*((?:[a-zA-Z\-_\:\.0-9\{\}]+))(\/)((?:[a-zA-Z\-_\/\:\.0-9\{\}]+))" | sort -u
Please open Telegram to view this post
VIEW IN TELEGRAM
โค19๐Ÿ”ฅ5๐Ÿ—ฟ4๐Ÿ‘2๐Ÿ‘2๐Ÿณ2
4.55K views
Brut Security
๐ŸšจGoogle Dorks๐Ÿšจ

These are awesome dorks that may lead you to great findings when testing an application or doing bug bounty hunting.
๐Ÿ”ฅ20๐Ÿ‘3
4.65K views
Brut Security
๐—ฃ๐—ฎ๐˜†๐—น๐—ผ๐—ฎ๐—ฑ ๐—ช๐—ถ๐˜‡๐—ฎ๐—ฟ๐—ฑ ๐Ÿค– - AI assistant that utilizes GPT-3.5 and GPT-4 language models to interpret and generate cybersecurity payloads.

๐Ÿ”— payload-wizard.vercel.app
๐Ÿ‘11๐Ÿ”ฅ4
4.35K views
Brut Security
https://swisskyrepo.github.io/InternalAllTheThings/
swisskyrepo.github.io
Internal All The Things
Active Directory and Internal Pentest Cheatsheets
๐Ÿ‘6๐Ÿ”ฅ2
3.93K views
Brut Security
CVE-2025-0376 and other: Multiple vulnerabilitites in GitLab, 4.2 - 8.7 ratingโ—๏ธ

With the new release, GitLab has disclosed several vulnerabilities, including XSS injection, DoS and others.

Search at Netlas.io:
๐Ÿ‘‰ Link: https://nt.ls/50gFr
๐Ÿ‘‰ Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:"gitlab" OR http.headers.location:"gitlab"

Vendor's advisory: https://about.gitlab.com/releases/2025/02/12/patch-release-gitlab-17-8-2-released/
๐Ÿ‘10๐Ÿ”ฅ2โค1
4.11K views
Brut Security
โคโคโคโ€œHappy Valentineโ€™s Day to all the hackers out there! May your hearts never get 403 Forbidden, your love life stay fully patched, and your crushes always respond with a 200 OK!โ€๐Ÿ‘ป๐Ÿ‘ป๐Ÿ‘ป
Please open Telegram to view this post
VIEW IN TELEGRAM
โค36๐Ÿคฃ25๐Ÿ˜ข4๐Ÿ˜1๐Ÿ‘จโ€๐Ÿ’ป1
4.14K views
Brut Security
BGPView for Reconnaissance
๐Ÿ”ฅ14๐Ÿ‘6
4.21K views
Brut Security
โคโคโคFind Your Valentine on Twitter.
https://valentine-twitter.vercel.app/
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿคฃ29๐Ÿ˜4
4.45K viewsedited  
Brut Security
๐Ÿคฃ23๐Ÿ‘7๐Ÿณ7
4.16K views
Brut Security
๐Ÿ’ธ๐Ÿ’ธ๐Ÿ’ธ
Please open Telegram to view this post
VIEW IN TELEGRAM
3.63K views
Brut Security
โ– โ– โ– โ– โ–ก Leaking the email of any YouTube user for $10,000.

https://brutecat.com/articles/leaking-youtube-emails
brutecat.com
Leaking the email of any YouTube user for $10,000
What could've been the largest data breach in the world - an attack chain on Google services to leak the email address of any YouTube channel
๐Ÿ‘10๐Ÿ—ฟ3๐Ÿ‘2
3.88K views
Brut Security
Brut Security
๐Ÿ”’Bug Bounty Tip: Algolia API Key Exposure Can Lead to Web Log Access with CRUD Permissions โญ๏ธIf an Algolia API key is exposed, it may allow access to search logs with Create, Read, Update, and Delete (CRUD) privileges. This can reveal user queries and otherโ€ฆ
https://www.youtube.com/watch?v=gaicSx0KJjA
YouTube
๐Ÿšจ Algolia Admin API Key CRITICAL Flaw Exposed! 2024 Exploit POC | Bug Bounty POC๐Ÿ”ฅ
โš ๏ธ WARNING: For Educational & Ethical Purposes Only! โš ๏ธ
In this video, I demonstrate a critical security vulnerability involving the Algolia Admin API Key and provide a step-by-step proof-of-concept (PoC) to showcase how this exploit could be abused. If youโ€™reโ€ฆ
๐Ÿ”ฅ10โค2
4.18K views
Brut Security
When cybersecurity burnout hits, off-grid life starts calling. ๐Ÿ˜‚
๐Ÿคฃ18๐Ÿ˜4๐Ÿ‘2
3.81K views
Brut Security
This media is not supported in your browser
VIEW IN TELEGRAM
๐Ÿ”ฅ๐Ÿ”ฅ๐Ÿ”ฅProjectDiscovery launched Nuclei v1 with an -ai flag that makes custom vulnerability detection simple, no YAML skills needed. It now offers instant AI-powered scanning from the command line, smarter template editing, external link support, automated security regressions, and larger context windows for all users. Check it out here: https://projectdiscovery.io/blog/reinventing-custom-detections-and-vulnerability-management
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ‘15๐Ÿ—ฟ8๐Ÿ”ฅ5โค4๐Ÿ‘1๐Ÿซก1
4.51K views
Brut Security
๐Ÿ›ก๐Ÿ›กLooking for a specific Nuclei template?  Use the -tl option to list all available Nuclei Templates and then grep for the keyword you're interested in!
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ‘11๐Ÿ‘7โค3
4.37K views
Brut Security
๐Ÿ—ฃ๏ธ๐Ÿ—ฃ๏ธ๐Ÿ—ฃ๏ธ
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ”ฅ37๐Ÿคฃ6๐Ÿ‘3๐Ÿ—ฟ1
4.01K views