🔍 Bug Bounty Tip – PDF Keyword Crawler

Hunting for sensitive info in public PDFs?

🧩 Use PDF Keyword Crawler Firefox add-on
📁 Load your urls.txt (with .pdf links)
🔑 It scans for sensitive keywords automatically!

🧠 Great for discovering leaked secrets, creds, or internal docs.

👉 Add-on: https://addons.mozilla.org/es-AR/firefox/addon/pdf-keyword-crawler/

⚡️Outdated but Helpful Some MySQL tricks to break some #WAFs out there. ⚔️ by @BRuteLogic

SELECT-1e1FROM`test`
SELECT~1.FROM`test`
SELECT\NFROM`test`
SELECT@^1.FROM`test`
SELECT-id-1.FROM`test`

#infosec #cybersec #bugbountytips

🚨 CVE-2025-0133 - medium 🚨

PAN-OS - Reflected Cross-Site Scripting

> A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway

👾 https://t.co/pk8n5FJa8K

CVE-2025-4278, -5121, 2254 and other: Multiple vulnerabilities in GitLab, 3.7 - 8.7 rating❗️

In recent patch notes, GitLab reported ten vulnerabilities, including HTML injection, XSS, DoS, and more.

Search at Netlas.io:
👉 Link: https://nt.ls/dq6qU
👉 Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:"gitlab" OR http.headers.location:"gitlab"

Vendor's advisory: https://about.gitlab.com/releases/2025/06/11/patch-release-gitlab-18-0-2-released/#cve-2025-5121---missing-authorization-issue-impacts-gitlab-ultimate-ee

CF-Hero is a simple tool that helps you discover the origin IP of Cloudflare-protected servers using multiple sources! 😎

🔗 github.com/musana/CF-Hero

🇮🇳 Operation CyberShakti
Independence Day Special Batch
Only for Beginners

💻 Ethical Hacking & Web Pentesting
📅 Duration: 2 Months (Live Classes)
👥 10 Students Per Batch
💰 ₹3999
🌐 https://brutsec.com/CyberShakti.pdf

📩 Join / Ask Queries
Telegram: @wtf_brut
WhatsApp: wa.link/brutsecurity
https://wa.me/+918945971332

No experience? No problem.
Learn from scratch. Build real skills.
Only at Brut Security.

#OperationCyberShakti #BrutSecurity #EthicalHacking #BugBounty #Cybersecurity #BeginnersOnly

🕵️‍♂️ Bug Bounty Tip - Extract JavaScript File URLs from Any Page!

Forget opening DevTools - use this bookmarklet to instantly extract all .js file URLs and download them in a .txt file.

🚀 Why this matters:

Quickly collect all linked JavaScript files
Use them for static analysis (LinkFinder, SecretFinder, etc.)
Great for recon, endpoint discovery & auth bypasses

📌 Bookmarklet Code:
javascript:(function(){let urls=[];document.querySelectorAll('*').forEach(e=>{urls.push(e.src,e.href,e.url)});urls=[...new Set(urls)].filter(u=>u&&u.endsWith('.js')).join('\n');let blob=new Blob([urls],{type:'text/plain'});let a=document.createElement('a');a.href=URL.createObjectURL(blob);a.download='javascript_urls.txt';a.click();})();

💡 How to use:
Create a new bookmark in your browser.
Paste the above code into the URL field.
Visit a target site and click the bookmark.
A javascript_urls.txt file will be downloaded with all .js links.

🔥 Now you can feed that into:
LinkFinder
SecretFinder
JSParser
Or manual analysis!

⚡Dependency Confusion via JS Miner

@GodfatherOrwa just landed a clean P1 by leveraging JS Miner in Burp Suite 🔥

Here’s how it went down 👇

🧩 After crawling all endpoints, he went to:
Target ➝ Extensions ➝ JS Miner ➝ Run All Passive Scans

💥 That’s when he spotted: [JS Miner] Dependency Confusion
The vulnerable package was unclaimed on NPM 👀

📦 Next steps he followed:

npm login
mkdir <package-name> && cd <package-name>
npm init -y
npm publish --access public

After claiming the package, he injected an RCE payload via package.json
🧪 Full POC: github.com/orwagodfather/NPM-RCE

💣 Result? A solid P1 vulnerability and a perfect example of how effective Dependency Confusion still is.

Props to @GodfatherOrwa for consistently dropping fire techniques 🔥

🔍 Bug Bounty Web Checklist
✅Track your web pentesting progress by checking each subcategory.
👉https://nemocyberworld.github.io/BugBountyCheckList/

Grab all the GF Patterns from different Repositories at one shot !! 🔥

*Link* : https://github.com/thecybertix/GF-Patterns