Subdomain Takeover in Azure: making a PoC
https://godiego.tech/posts/STO/
#Azure
#SubdomainTakeover
@web_priv8
https://godiego.tech/posts/STO/
#Azure
#SubdomainTakeover
@web_priv8
Scope Based Recon Methodology: Exploring Tactics for Smart Recon
https://blog.cobalt.io/scope-based-recon-smart-recon-tactics-7e72d590eae5
#Recon
#BugBounty
@web_priv8
https://blog.cobalt.io/scope-based-recon-smart-recon-tactics-7e72d590eae5
#Recon
#BugBounty
@web_priv8
Poisoning your Cache for 1000$ - Approach to Exploitation Walkthrough
https://galnagli.com/Cache_Poisoning/
#WCP
#BugBounty
@web_priv8
https://galnagli.com/Cache_Poisoning/
#WCP
#BugBounty
@web_priv8
Mass Assignment vulnerability and prevention
https://itzone.com.vn/en/article/mass-assignment-vulnerability-and-prevention/
#MassAssignment
#BugBountyTip
@web_priv8
https://itzone.com.vn/en/article/mass-assignment-vulnerability-and-prevention/
#MassAssignment
#BugBountyTip
@web_priv8
Dot Dot Semicolon RCE
https://thehackingfactory.com/dot-dot-semicolon-rce
#Java
#RCE
#BugBounty
@web_priv8
https://thehackingfactory.com/dot-dot-semicolon-rce
#Java
#RCE
#BugBounty
@web_priv8
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Demo https://youtu.be/WLurj5Lg8cI
https://github.com/r3curs1v3-pr0xy/vajra
#Tool
#Recon
#BugBounty
@web_priv8
Demo https://youtu.be/WLurj5Lg8cI
https://github.com/r3curs1v3-pr0xy/vajra
#Tool
#Recon
#BugBounty
@web_priv8