https://github.com/shuvonsec/claude-bug-bounty
How It Works
How It Works
YOU
|
┌─────▼─────┐
│ Claude │ ◄── Burp MCP (sees your traffic)
│ Code │ ◄── HackerOne MCP (program intel)
└─────┬─────┘
|
┌───────────────┼───────────────┐
| | |
┌─────▼─────┐ ┌──────▼──────┐ ┌────▼────┐
│ Recon │ │ Hunt │ │ Report │
│ Agent │ │ Engine │ │ Writer │
└─────┬─────┘ └──────┬──────┘ └────┬────┘
| | |
subfinder scope check H1/Bugcrowd
httpx vuln test Intigriti
katana validate Immunefi
nuclei chain A→B→C CVSS 3.1
| | |
┌─────▼───────────────▼───────────────▼─────┐
│ Hunt Memory │
│ journal · patterns · audit · rate limit │
GitHub
GitHub - shuvonsec/claude-bug-bounty: AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting…
AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code. - shuvonsec/claude-bug-bounty
New Dark Web Marketplace “Threat Market” Observed
A newly surfaced onion marketplace dubbed Threat Market is gaining attention in underground forums.
Key offerings advertised:
• Access & databases
• Logs and stolen data
• RaaS (Ransomware-as-a-Service)
• Stealers, RATs, exploits
• Crypto tools, proxies, and bypass services
The platform appears structured with region-based targeting and a wide range of cybercrime services.
⚠️ As always, extreme caution — links and claims are unverified and may pose risks.
Source: DailyDarkWeb
A newly surfaced onion marketplace dubbed Threat Market is gaining attention in underground forums.
Key offerings advertised:
• Access & databases
• Logs and stolen data
• RaaS (Ransomware-as-a-Service)
• Stealers, RATs, exploits
• Crypto tools, proxies, and bypass services
The platform appears structured with region-based targeting and a wide range of cybercrime services.
⚠️ As always, extreme caution — links and claims are unverified and may pose risks.
Source: DailyDarkWeb
Forwarded from JavaSec
Bugun NTLM haqida gaplashamiz, ko'pchilik NTLMni faqatgina PTH va crack qilishni bilishadi lekin...
Savol to'g'ri. Lekin javob murakkab.
Xulosa:
NTLM — eski tizmlardan qolgan meros. Lekin hali ham ishlayapti. Hali ham tarmoqlarda uchrayapti. Va hali ham xavfli.
Eng katta xato — "biz Kerberos ishlatyapmiz, NTLM yo'q" deb o'ylash.
Chunki Windows fallback qiladi. Doim.
Va hujumchi shu momentni kutadi.
Telegram📱 Linkedin 📱
NTLM o'zi nima, Kerberos bo'lsa yetarli emasmi?
Savol to'g'ri. Lekin javob murakkab.
Tasavvur qiling. Sizda eski Windows server bor. Kerberos'ni qo'llab-quvvatlamaydi. Yoki VPN orqali ulanayapsiz. Yoki oddiy workgroup muhitida ishlayapsiz. Kerberos bu holatlarda ishlamaydi.
Shu payt Windows shunday deydi: "Xo'p, NTLM ishlatamiz."
NTLM qanday ishlaydi?
Uchta step.🌐
Client → NEGOTIATE → Server "men ulanmoqchiman"
Client ← CHALLENGE ← Server "mana savoling, javob ber"
Client → AUTHENTICATE → Server "mana javobim"
Lekin bu yerda juda muhim bir narsa bor. Parol hech qachon tarmoqda yurмaydi.Buning o'rniga server clientga tasodifiy raqam yuboradi — ServerChallenge. Client esa o'z parolining hash'i yordamida shu raqamdan javob hisoblaydi. Server bu javobni DC'ga yuboradi. DC tekshiradi. Tasdiqlaydi. Tugadi.
Oddiy va aqlli tizim.
Lekin muammo boshlanadi…
NTLMv1 davrida client faqat server berayotgan raqamdan javob hisoblardi. O'zi hech narsa qo'shmasdi. Bu degani — agar siz serverning javobini ushlab olsangiz, uni boshqa joyda qayta ishlatishingiz mumkin edi.
NTLMv2 buni tuzatdi. Endi client ham o'z tasodifiy raqamini qo'shadi. Timestamp ham qo'shiladi. Username va domain ham hash'ga kiradi.
Lekin asosiy muammo qolmoqda.
SMB signing default holatda yoqilmagan.
Ya'n🔑 i:
Domain Controllers → signing: Required ✓
Oddiy serverlar → signing: Not Required ✗
Oddiy clientlar → signing: Not Required ✗
Bu nima degani?
Agar signing yo'q bo'lsa — NTLM relay attack mumkin. Siz autentifikatsiyani ushlab, uni boshqa serverga "relay" qilasiz. Qurbon o'zini sizga authenticate qiladi. Siz esa uning nomidan boshqa serverga kirasiz.
Responder bilan ushlangan NTLMv2 hash shunday ko'rinadi:
Support2::INLANEFREIGHT:e2d2339638fc5fd6:D4979A923...
User::Domain:ServerChallenge:Response:ClientChallenge
Bu hash'ni offline ham crack qilsa bo'ladi. Online ham relay qilsa bo'ladi.
Xulosa:
NTLM — eski tizmlardan qolgan meros. Lekin hali ham ishlayapti. Hali ham tarmoqlarda uchrayapti. Va hali ham xavfli.
Eng katta xato — "biz Kerberos ishlatyapmiz, NTLM yo'q" deb o'ylash.
Chunki Windows fallback qiladi. Doim.
Va hujumchi shu momentni kutadi.
Telegram
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥1
Forwarded from JavaSec
Kiberxafsizlikni o'rganayotganingizda ko'p qiynaladigan mavzuyingiz yoki yo'nalishingiz qaysi ?
tell me pls
tell me pls
JavaSec
Kiberxafsizlikni o'rganayotganingizda ko'p qiynaladigan mavzuyingiz yoki yo'nalishingiz qaysi ? tell me pls
Bemalol savollaringizni yozishingiz mumkin. Mutaxassis sifatida barcha savolingizga javob bera oladilar.
Forwarded from SecuriXy.kz
🤖 AI Wordlist для фазинга вайбкоженных сервисов
Пока все пишут код с помощью ИИ, я собрал список файлов, которые они забывают закрывать.
Вайбкодинг ускоряет разработку. Он же ускоряет создание дырок.
🔗 GitHub: https://github.com/cleverg0d/Wordlists/blob/main/AI_wordlist.txt
Берите, дополняйте, находите интересное.
#pentest #recon #wordlist #ai #bugbounty
Пока все пишут код с помощью ИИ, я собрал список файлов, которые они забывают закрывать.
- это не просто мусор в корне проекта, а архитектура, стек, внутренние эндпоинты и иногда credentials, скормленные разработчиком своему AI-ассистенту.
CLAUDE.md, .cursorrules, .aider.chat.history.md, llms.txt, AGENTS.md и тп.
Вайбкодинг ускоряет разработку. Он же ускоряет создание дырок.
🔗 GitHub: https://github.com/cleverg0d/Wordlists/blob/main/AI_wordlist.txt
Берите, дополняйте, находите интересное.
#pentest #recon #wordlist #ai #bugbounty
⚡1
THE PERIODIC TABLE OF DFIR
The Definitive Reference for Digital Forensics & Incident Response Tools
118 Tools | 8 Categories | 69 Open Source
https://ledlight33.github.io/periodic-table-of-dfir/
The Definitive Reference for Digital Forensics & Incident Response Tools
118 Tools | 8 Categories | 69 Open Source
https://ledlight33.github.io/periodic-table-of-dfir/
Yaqinda eron raqamlaridan xalqni aldash maqsadida scammerlar qo'ng'iroq qilishi mumkinligi haqida o'qigandim. Shu kunga ham yetib keldik bir yaqinimga yuqoridagi raqamdan qo'ng'iroq qilingan va rus tilida gapira boshlagan o'zini esa Aliyev Temur Rustamovich yani Militisa hodimi deb tanishtirgan. Ogoh bo'lamiz. Bu narsani sizu biz tushunishimiz mumkin ammo hamma ham emas. Shuning uchun bu sohaga aloqasi yoq yaqinlaringizni ogohlantirib qoying
#scam
#scam
❤2🔥2
Forwarded from CVE
CVE-2026-5027.zip
7.2 KB
CVE-2026-5027
The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbitrary locations on the filesystem using path traversal sequences ('../').
GitHub Link:
https://github.com/EQSTLab/CVE-2026-5027
The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbitrary locations on the filesystem using path traversal sequences ('../').
GitHub Link:
https://github.com/EQSTLab/CVE-2026-5027