Please open Telegram to view this post
VIEW IN TELEGRAM
β€8π3
Please open Telegram to view this post
VIEW IN TELEGRAM
β€6π3π³1
Hey Hunter's,
DarkShadow here back again, dropping a RCE in mail input field!
Listen, this is very important.
I Hope this method also help you to improve your bug hunting. Now guys show your love β€οΈ
#bugbountytip #rce
DarkShadow here back again, dropping a RCE in mail input field!
Listen, this is very important.
1. When a sign-in/sign-up page comes, use a normal email using your burp collaborator.
2. If you got any HTTP hit back in your burp, then don't stop thinking by SSRF.
3. Now test command injection payload on the mail input field.
4. Don't use URL encoding in space like %20 always use ${IFS} to replace spaces.
5. It's essential when you try here RCE also try blind OS injection payloads.
I Hope this method also help you to improve your bug hunting. Now guys show your love β€οΈ
#bugbountytip #rce
β€7π₯7
β‘Flowsint - Flowsint is an open-source OSINT graph exploration tool designed for ethical investigation, transparency, and verification.
β https://github.com/reconurge/flowsint
β https://github.com/reconurge/flowsint
β€7π₯4
#AD
π‘ Private Exploit Subscription
π VIP Nxploited Access π
π Whatβs Included:
π All vulnerabilities are critical (high-severity CVEs only)
π Every CVE is published immediately upon release along with a dedicated exploit
π All vulnerabilities include a working Proof of Concept (POC) or ready-to-use script
π Clear documentation is provided, along with private support for target verification
π No public or outdated exploits β all content is exclusive and up to date
π§ Subscription Plans:
-β
Weekly: $150
-β
Monthly: $300
-β
4 Months: $600
π Terms of Subscription:
- Access is personal and non-transferable
- Sharing or leaking any materials is strictly prohibited
- Any violation results in permanent removal without refund
- All content is for educational and research purposes only
- Each member is fully responsible for how the material is used
π Contact to Join:
Telegram: @KxploitπΆ
Channel β https://t.me/KNxploited
π‘ Private Exploit Subscription
π Whatβs Included:
-
-
-
π Terms of Subscription:
- Access is personal and non-transferable
- Sharing or leaking any materials is strictly prohibited
- Any violation results in permanent removal without refund
- All content is for educational and research purposes only
- Each member is fully responsible for how the material is used
π Contact to Join:
Telegram: @Kxploit
Channel β https://t.me/KNxploited
#AD
Please open Telegram to view this post
VIEW IN TELEGRAM
1β€6π₯1π¨βπ»1
Please open Telegram to view this post
VIEW IN TELEGRAM
π2
π₯ Bug Bounty Recon Tip: Find forgotten / hidden APIs & endpoints devs left behind! π₯
Chain these 2 awesome free tools by @xnl-h4ck3r:
π‘ Pro combo (most people run):
waymore -i example.com -oU urls.txt && xnLinkFinder -i urls.txt -sf example.com -o cli -sp
Youβll often discover undocumented /admin-api/v2, debug endpoints, old GraphQL paths, forgotten params with IDORs, leaked keys etc. β pure passive recon gold!
Install both via pip:
pip install waymore
pip install git+https://github.com/xnl-h4ck3r/xnLinkFinder.git
Repos:
β https://github.com/xnl-h4ck3r/waymore
β https://github.com/xnl-h4ck3r/xnLinkFinder
Happy hunting & donβt forget to chain β gau + katana + waymore + xnLinkFinder = monster recon list π
#BugBounty #Recon #WebHacking #APIHunting #CyberSecurity
Chain these 2 awesome free tools by @xnl-h4ck3r:
1οΈβ£ waymore β pulls massive archived URLs + responses from Wayback, Common Crawl, VirusTotal, URLScan, OTX & more
Basic command:
waymore -i target.com -oU waymore-urls.txt
2οΈβ£ xnLinkFinder β parses those responses / JS / pages and extracts juicy endpoints, parameters, secrets & even generates a target-specific wordlist
Chain it like this:
xnLinkFinder -i waymore-urls.txt -sf target.com -o results/π‘ Pro combo (most people run):
waymore -i example.com -oU urls.txt && xnLinkFinder -i urls.txt -sf example.com -o cli -sp
Youβll often discover undocumented /admin-api/v2, debug endpoints, old GraphQL paths, forgotten params with IDORs, leaked keys etc. β pure passive recon gold!
Install both via pip:
pip install waymore
pip install git+https://github.com/xnl-h4ck3r/xnLinkFinder.git
Repos:
β https://github.com/xnl-h4ck3r/waymore
β https://github.com/xnl-h4ck3r/xnLinkFinder
Happy hunting & donβt forget to chain β gau + katana + waymore + xnLinkFinder = monster recon list π
#BugBounty #Recon #WebHacking #APIHunting #CyberSecurity
β€13π6π₯2
Please open Telegram to view this post
VIEW IN TELEGRAM
π8π1
Hey Hunter's,
DarkShadow is here back again, and dropping again a RCE method!
πSteps to reproduce:β οΈ
1. Collect all possible js endpoints.
You can use my DarkEndFinder for quick js find.
2. Grep .map files from js files.
3. Use jsmap-inspector to debug clearly
4. Read manually one by one js logics and note down all the critical endpoints
5. Now play in your burp also use curl
AND I HOPE YOU KNOW WHAT SHOULD YOU DO NEXT... ALSO READ THE IMAGES.
Tip:
To collect more js use wayback machine urls.
So guy's if you really enjoyed to read methods then show your loveβ€οΈ
#bugbountytip #rce
DarkShadow is here back again, and dropping again a RCE method!
πSteps to reproduce:β οΈ
1. Collect all possible js endpoints.
You can use my DarkEndFinder for quick js find.
2. Grep .map files from js files.
3. Use jsmap-inspector to debug clearly
4. Read manually one by one js logics and note down all the critical endpoints
5. Now play in your burp also use curl
AND I HOPE YOU KNOW WHAT SHOULD YOU DO NEXT... ALSO READ THE IMAGES.
Tip:
To collect more js use wayback machine urls.
So guy's if you really enjoyed to read methods then show your loveβ€οΈ
#bugbountytip #rce
β€13π₯3π3π«‘2