Brut Security
15.9K subscribers
1.05K photos
90 videos
298 files
1.14K links
βœ…DM: @wtf_brut
πŸ›ƒWhatsApp: https://wa.link/brutsecurity
🈴Training: https://brutsecurity.com
πŸ“¨Mail: info@brutsec.com
Download Telegram
⚑Google Dorks - Cloud Storage: site:http://s3.amazonaws.com "target[.]com" site:http://blob.core.windows.net "target[.]com" site:http://googleapis.com "target[.]com" site:http://drive.google.com "target[.]com"

πŸ‘‰Find buckets and sensitive data.
Combine:

site:
http://s3.amazonaws.com | site:http://blob.core.windows.net | site:http://googleapis.com | site:http://drive.google.com "target[.]com"

Add something to narrow the results: "confidential” β€œprivileged" β€œnot for public release”

βœ…Credit- Mike Takahashi
πŸ”₯9πŸ‘7
This media is not supported in your browser
VIEW IN TELEGRAM
OffSec Train πŸ˜‚πŸ˜‚
1πŸ—Ώ20πŸ‘¨β€πŸ’»4🐳2πŸ”₯1
⚑Ethical Hacking Study Guide - 2025
βœ…Download -
https://topmate.io/saumadip/1391531
πŸ—Ώ4
Just Flexing, what everyone have :P
πŸ”₯9πŸ‘5
Brut Security
⚑Ethical Hacking Study Guide - 2025 βœ…Download -https://topmate.io/saumadip/1391531
Sorry to close the free download for everyone, many spammers are trying to spam by random name, email and phone number. I have to add 1 INR / 0.012$ to avoid spam on my mail. Sorry for the inconvenience!
πŸ—Ώ2
🚨 Top 50 Google Dorks for Bug Bounty Hunters!
❀10
Please open Telegram to view this post
VIEW IN TELEGRAM
πŸ—Ώ8❀6πŸ”₯3🐳1
Scan for WordPress, Joomla, Drupal and Moodle bugs via CMSmap.
❀6πŸ‘6
⚑Ethical Hacking Study Guide - 2025
βœ…Download -https://topmate.io/saumadip/1391531
πŸ‘1
Should I make a Bug Bounty study guide?
Do give ❀️ reaction to say yes.
❀131πŸ‘9πŸ—Ώ8🐳1
⚑CVE-2024-50603: Aviatrix Controller Unauthenticated Command Injection
πŸ‘‰
https://github.com/th3gokul/CVE-2024-50603/

βœ…Join Telegram-
https://t.me/brutsecurity
❀9
✨Gitleaks: a tool to detect secrets like passwords, API keys, and tokens in git repositories and files.

βœ…https://t.co/BvaiYNWouP
πŸ”₯11❀2πŸ‘1
⭐Ghostscript - Multiple Vulnerabilities

⌨️http://seclists.org/oss-sec/2018/q3/142

πŸ”΅These are critical and trivial remote code execution bugs in things like ImageMagick, Evince, GIMP, and most other PDF/PS tools.

🌟https://www.exploit-db.com/exploits/45243
Please open Telegram to view this post
VIEW IN TELEGRAM
❀1
CVE-2025-22777: Privilege Escalation in GiveWP WordPress Plugin, 9.8 rating πŸ”₯

Unauthenticated PHP Object Injection allows attackers to take control of websites.

Search at Netlas.io:
πŸ‘‰ Link: https://nt.ls/amyWM
πŸ‘‰ Dork: http.body:"plugins/give/assets/dist"

Read more: https://patchstack.com/articles/critical-vulnerability-patched-in-givewp-plugin/
πŸ‘6
Expose localhost to the internet
https://t.co/ZEgxF561zN
πŸ‘5
πŸ—Ώ16❀2
⚑️Bug Bounty Helper
βœ…dorks.faisalahmed.me
❀11πŸ”₯4πŸ‘1🀝1
PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus,etc

github.com/shadowsock5/Poc
❀6πŸ‘3
β˜„οΈ Exciting News for Aspiring Bug Hunters! β˜„οΈ

πŸ’₯ Enrollments are now open for Brut Ethical Hacking and Basic to Advanced Web Penetration Testing (Bug Bounty) courses, starting January 2025!

Course Highlights:
β€’ Comprehensive training on Business Logic, SQL Injection, and more.
β€’ 40 hours of live, online sessions.
β€’ Practical, hands-on exercises to master real-world vulnerabilities.
β€’ Pathway to becoming a skilled bug hunter and advancing your cybersecurity career.

πŸ—“Classes Begin: January 2025 (PAID COURSE)
πŸ“žContact: Whatsapp for details and enrollment.
🌐Visit: Brut Security
Please open Telegram to view this post
VIEW IN TELEGRAM
❀6πŸ‘1