Add to your wordlist:
auth/jwt/register
auth-demo/register/classic
auth-demo/register/modern
auth/jwt/register
auth-demo/register/classic
auth-demo/register/modern
π₯3β€1
Please open Telegram to view this post
VIEW IN TELEGRAM
π₯10π1
Forwarded from Netlas.io
Reminder: The update begins in one hour. Netlas will be temporarily offline. We apologize for any inconvenience caused.
Please open Telegram to view this post
VIEW IN TELEGRAM
Discord
Join the Brut Security Discord Server!
Check out the Brut Security community on Discord - hang out with 285 other members and enjoy free voice and text chat.
β€3
Forwarded from Netlas.io
π₯ Netlas Private Scanner is Here! π₯
Now you can perform super fast non-intrusive scan of any attack surface or even single IP address, and analyze up-to-date results π
Other improvements:
π€ Team features (sharing) added to the Discovery and Scanner
π Fixed the Discovery Download bug
π₯ Some minor updates
π Read more: https://docs.netlas.io/easm/scanner/
Now you can perform super fast non-intrusive scan of any attack surface or even single IP address, and analyze up-to-date results π
Other improvements:
π€ Team features (sharing) added to the Discovery and Scanner
π Fixed the Discovery Download bug
π₯ Some minor updates
π Read more: https://docs.netlas.io/easm/scanner/
π₯1
CVE-2024-38816: Path Traversal in Spring Framework, 7.5 ratingβοΈ
An attacker can create a malicious HTTP request and use it to gain access to any file accessible by the Spring application process. However, this is easily blocked using the Spring Firewall, so don't forget to enable it.
Search at Netlas.io:
π Link: https://nt.ls/jT0JO
π Dork: tag.name:"spring"
Vendor's advisory: https://spring.io/security/cve-2024-38816
An attacker can create a malicious HTTP request and use it to gain access to any file accessible by the Spring application process. However, this is easily blocked using the Spring Firewall, so don't forget to enable it.
Search at Netlas.io:
π Link: https://nt.ls/jT0JO
π Dork: tag.name:"spring"
Vendor's advisory: https://spring.io/security/cve-2024-38816
β€1π1
πCVE-2024-23692:Unauthenticated RCE Flaw in Rejetto HTTP File Server
π₯New PoC:https://github.com/verylazytech/CVE-2024-23692
πDork:
HUNTER: web.body="HttpFileServer"&&header.server=="HFS 2.3m"
π₯New PoC:https://github.com/verylazytech/CVE-2024-23692
πDork:
HUNTER: web.body="HttpFileServer"&&header.server=="HFS 2.3m"
β€4π3
CVE-2024-38812, -38813: Two vulnerabilities in VMware vCenter, 7.5 - 9.8 rating π₯
Heap overflow and privilege escalation vulns on unpatched servers allow attackers to easily perform RCE using a specially crafted network packet.
Search at Netlas.io:
π Link: https://nt.ls/44tRg
π Dork: http.title:"ID_VC_Welcome" OR certificate.issuer.domain_component:"vsphere"
Vendor's advisory: https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24968
Heap overflow and privilege escalation vulns on unpatched servers allow attackers to easily perform RCE using a specially crafted network packet.
Search at Netlas.io:
π Link: https://nt.ls/44tRg
π Dork: http.title:"ID_VC_Welcome" OR certificate.issuer.domain_component:"vsphere"
Vendor's advisory: https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24968
π2
Looking for Active Discord Moderators. Do DM Me With Your Past Experiences. π
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
πΏ5β€4π₯3
https://github.com/pdelteil/scammy-bbp This repository contains a list of all the bug bounty programs that do not value the time and effort of hackers correctly. (Before you hunt on any target it's better to have reviews from other hackers)
GitHub
GitHub - pdelteil/scammy-bbp: Self-hosted bug bounty programs that are "scammy" or unethical
Self-hosted bug bounty programs that are "scammy" or unethical - pdelteil/scammy-bbp
β€10π1
Brut Security pinned Β«https://github.com/pdelteil/scammy-bbp This repository contains a list of all the bug bounty programs that do not value the time and effort of hackers correctly. (Before you hunt on any target it's better to have reviews from other hackers)Β»
Vulnerabilities to look for in complex applications
https://x.com/Rahim7X/status/1800824051340026051?t=XgFB06JWQuTtk4e0M6cJQg&s=19
https://x.com/Rahim7X/status/1800824051340026051?t=XgFB06JWQuTtk4e0M6cJQg&s=19
X (formerly Twitter)
Rahim (@0xRahim_) on X
Few vulnerabilities to look for while testing modern web applications. #bugbounty
1) Access control and IDOR :
pull api routes from javascript files and wayback javascript. documentation and wayback documentation.
1) Access control and IDOR :
pull api routes from javascript files and wayback javascript. documentation and wayback documentation.
π1