GitBook
@GitBook_s
5.57K subscribers
268 photos
4 videos
390 files
866 links
ctf, pentest, writeUps, osint, labs,
tips، GitBooks, Notion
Web pentest, bug bounty
Download Telegram
About
Blog
Apps
Platform
Join
GitBook
5.57K subscribers
GitBook
Oreilly_Mastering_Cybersecurity_with_Python_From_Basics_to_Advanced.zip
1.3 GB
1.3K views
GitBook
"Hard times give birth to strong people, strong people create easy times. Easy times give birth to weak people. Weak people create hard times.
👍2
1.1K views
GitBook
🛡 Top 10 web hacking techniques of 2024.

https://portswigger.net/research/top-10-web-hacking-techniques-of-2024
Please open Telegram to view this post
VIEW IN TELEGRAM
PortSwigger Research
Top 10 web hacking techniques of 2024
Welcome to the Top 10 Web Hacking Techniques of 2024, the 18th edition of our annual community-powered effort to identify the most innovative must-read web security research published in the last year
👍31
1.27K views
GitBook
Recon Skills and Tips.pptx.pdf
825.4 KB
💵💵💵Recon Skills and Tips by Godfather ORWA ⚡️
Please open Telegram to view this post
VIEW IN TELEGRAM
980 views
GitBook
Common OAuth Vulnerabilities · Doyensec's Blog

https://blog.doyensec.com/2025/01/30/oauth-common-vulnerabilities.html
👍1
901 views
GitBook
postMessage XSS: https://medium.com/@rootast/postmessage-xss-f5402c9e219c?source=rss------bug_bounty-5
Medium
postMessage XSS
The postMessage API enables secure and efficient communication between different windows, tabs, iframes, or between parent and child…
812 views
GitBook
Python libraries every Hacker should know: https://infosecwriteups.com/python-libraries-every-hacker-should-know-97fb5dae2efd?source=rss------bug_bounty-5
Medium
Exploring Python’s Best Libraries for Ethical Hacking
Manually enumerating targets can be a nightmare; Python automates enumeration using these libraries, which are mostly used by pentesters…
781 views
GitBook
Mastering 403 Bypass Techniques: A Penetration Tester’s Guide: https://bitpanic.medium.com/mastering-403-bypass-techniques-a-penetration-testers-guide-f3a1cb16b9a3?source=rss------bug_bounty-5
Medium
Mastering 403 Bypass Techniques: A Penetration Tester’s Guide
Exploring Methods to Bypass Forbidden Access Restrictions in Web Applications
767 views
GitBook
How I Found an Open AWS S3 Bucket and Used It to Take Over a Subdomain: https://medium.com/@bochamekh21/how-i-found-an-open-aws-s3-bucket-and-used-it-to-take-over-a-subdomain-75736e90c945?source=rss------bug_bounty-5
Medium
How I Found an Open AWS S3 Bucket and Used It to Take Over a Subdomain
Greetings, fellow hackers!
756 views
GitBook
Find XSS Vulnerabilities in Minutes: https://medium.com/@phirojshah20/find-xss-vulnerabilities-in-minutes-912d02d2b848?source=rss------bug_bounty-5
Medium
Find XSS Vulnerabilities in Minutes
Cross-Site Scripting (XSS) remains one of the most prevalent vulnerabilities in web applications. As a red teamer or a bug bounty hunter…
729 views
GitBook
How I Exposed IDOR and Path Traversal Vulnerabilities in a Parking Portal: https://medium.com/@br3ss/how-i-exposed-idor-and-path-traversal-vulnerabilities-in-a-parking-portal-0ae8e4940306?source=rss------bug_bounty-5
Medium
How I Exposed IDOR and Path Traversal Vulnerabilities in a Parking Portal
As a curious penetration tester with a knack for finding bugs where they least expect it, I recently stumbled upon a vulnerability that…
714 views
GitBook
Bug Bounty Hunting Prerequisites: https://it4chis3c.medium.com/bug-bounty-hunting-prerequisites-964560919547?source=rss------bug_bounty-5
Medium
Bug Bounty Hunting Prerequisites
Before moving on to the actual BBH series, I will be writing 2–3 blogs related to Prerequisites, Roadmap (followed by me & professionals as…
854 views
GitBook
My Journey to Finding Two XSS Vulnerabilities on a Bug Bounty Website: https://medium.com/@mickaelbenlolo/my-journey-to-finding-two-xss-vulnerabilities-on-a-bug-bounty-website-b6a1e38425df?source=rss------bug_bounty-5
Medium
My Journey to Finding Two XSS Vulnerabilities on a Bug Bounty Website
Introduction
838 views
GitBook
Humorous XSS Vulnerabilities in a Movie Website: https://medium.com/meetcyber/humorous-xss-vulnerabilities-in-a-movie-website-3600d7828661?source=rss------bug_bounty-5
Medium
Humorous XSS Vulnerabilities in a Movie Website
Here’s another follow-up article. I’ll be sharing more vulnerabilities I discovered on a popular Turkish movie website, which I mentioned…
921 views
GitBook
User information disclosed via API endpoint: https://mknayek101.medium.com/user-information-disclosed-via-api-endpoint-80a1b82e3f3a?source=rss------bug_bounty-5
Medium
User information disclosed via API endpoint
Summary:
814 views
GitBook
Hacking made easy with XSSIFY: https://aravind07.medium.com/hacking-made-easy-with-xssify-9637890cd33b?source=rss------bug_bounty-5
Medium
Hacking made easy with XSSIFY 💉
Inviting all hackers, bug bounty hunters nd cyber security enthusiasts to checkout our new tool 🔥
1.02K views
GitBook
🛜 The 7 layer OSI Model
Please open Telegram to view this post
VIEW IN TELEGRAM
👍3
1.34K views
GitBook
Authentication Notes.pdf
1019.4 KB
👍1
1.37K views
GitBook
Path traversal.pdf
3.5 MB
1.08K views
GitBook
# Path Traversal

payloads :- https://gist.github.com/SleepyLctl/63a2da730a3d5abce5013f0f510b1fe2

cheat sheet :- https://github.com/JahTheTrueGod/Directory-Traversal-Cheat-Sheet

OWASP :- https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/05-Authorization_Testing/01-Testing_Directory_Traversal_File_Include
Gist
Linux Path Traversal Cheatsheet
GitHub Gist: instantly share code, notes, and snippets.
1.07K views