Brut Security

Brut Security pinned «🌐 Advanced Web Application Penetration Testing Course - Elevate Your Cybersecurity Skills! 🌐 🔗 Full Course Curriculum: https://brutsec.com/WebPentesting.pdf 🗓️ Course Details: Starting: July 16th, 4PM IST Duration: 2 Months Schedule: 3 Days a Week Format:…»

17:58

Brut Security

Please open Telegram to view this post

VIEW IN TELEGRAM

👍3❤1

2.56K viewsSaumadip Mandal, edited 18:07

Brut Security

⚡️ SQLi One Liner ⚡️

subfinder -dL subdomain.txt | grep -Eo 'https?://[^ ]+\?[a-zA-Z0-9_-]+=\d+['"'"'"]?' wayback_urls.txt > potential_sqli.txt && while read url; do sqlmap -u "$url" --batch --level 5 --risk 3 --all --random-agent --time-sec 10 ; done < potential_sqli.txt

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥6❤2

2.5K viewsSaumadip Mandal, 16:27

Brut Security

CVE-2024-6387 (and probably CVE-2006-5051): Unauthenticated RCE in OpenSSH 🔥

The vulnerability, discovered by Qualys researchers, allows an attacker to perform RCE on any OpenSSH server, provided that the operating system contains the glibc library.

Versions 8.5p1 to 9.8p1 are affected, and versions <4.4p are also potentially vulnerable.

Search at Netlas.io:
👉🏻 Link: https://nt.ls/ySN3C
👉🏻 Dork: tag.openssh.version:(>=8.5 AND <9.8) OR tag.openssh.version:(<4.4)

Read more: https://www.qualys.com/regresshion-cve-2024-6387/

👍5

2.49K viewsSaumadip Mandal, 16:38

Brut Security

🔥3

2.81K viewsSaumadip Mandal, 16:46

Brut Security

OSCP_PDF.pdf

2.3 MB

2.72K viewsSaumadip Mandal, 17:16

Brut Security

⚠️Join Our Discussion Group ⚠️

🔥

https://t.me/brutsec

🔥

Please open Telegram to view this post

VIEW IN TELEGRAM

Discussion

Community Discussion

👍2

2.73K viewsSaumadip Mandal, edited 17:33

Brut Security

Brut Security pinned «⚠️Join Our Discussion Group ⚠️ 🔥 https://t.me/brutsec 🔥»

18:57

Brut Security

0:24

This media is not supported in your browser

VIEW IN TELEGRAM

⚠️Subprober - An essential HTTP multi-purpose Probing Tool for Penetration Testers and Security Researchers with Asynchronous httpx client support.

🔥Download: https://github.com/RevoltSecurities/Subprober

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥3

2.5K viewsSaumadip Mandal, 20:36

Brut Security

📞 Enroll Now: https://wa.me/918945971332

Please open Telegram to view this post

VIEW IN TELEGRAM

👍3❤1

2.57K viewsSaumadip Mandal, 08:55

Brut Security

Brut Security pinned a photo

09:31

Brut Security

https://www.youtube.com/watch?v=aVOraNqA-n8

YouTube

CrikeyCon 2021 - Shubham Shah - Hacking on Bug Bounties for Five Years

Bug bounties have become an established process in organisations with a mature security posture. Over the last five years, I have been submitting vulnerabilities to companies in almost every industry. By participating in bug bounties over such a long period…

2.41K viewsSaumadip Mandal, 06:16

Brut Security

🚨Payloads - Payload for bug bounty!🚨
🔗 Download https://github.com/1BlackLine/Payloads

👍5🔥1

2.96K viewsSaumadip Mandal, 07:22

Brut Security

2.81K viewsSaumadip Mandal, 07:25

Brut Security

breaking_into_cyber_security_successfully.pdf

1.6 MB

👍1

6.81K viewsSaumadip Mandal, 16:48

Brut Security

🤖 Bug Bounty Target -

https://bughunters.jahezgroup.com/en

Please open Telegram to view this post

VIEW IN TELEGRAM

👏3

2.71K viewsSaumadip Mandal, 18:16

Brut Security

☄️Will Drop A New BB Platform If We Reach 4K by Upcoming Week☄️

Please open Telegram to view this post

VIEW IN TELEGRAM

👍7

2.89K viewsSaumadip Mandal, edited 18:29

Brut Security

🔫 New Bug Bounty Target -

https://www.alliander.com/.well-known/security.txt

Please open Telegram to view this post

VIEW IN TELEGRAM

👍6❤‍🔥1🔥1👏1😁1

2.69K viewsSaumadip Mandal, 17:59

Brut Security

0:59

This media is not supported in your browser

VIEW IN TELEGRAM

⚠️CVE-2024-36991: Path Traversal on the “/modules/messaging/“ endpoint in Splunk Enterprise on Windows.

📣Sign Up On Netlas.io: https://app.netlas.io/ref/9cc61538/
📣Join Official Netlas Telegram: https://t.me/netlas

🔴In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could perform a path traversal on the /modules/messaging/ endpoint in Splunk Enterprise on Windows.

✅PoC: https://github.com/bigb0x/CVE-2024-36991

ℹ️Netlas Dork: http.body:"splunk-Enterprise"

Please open Telegram to view this post

VIEW IN TELEGRAM

❤2👍1

2.58K viewsSaumadip Mandal, edited 10:50

Brut Security

2.28K viewsSaumadip Mandal, 19:08

Brut Security

📣Understanding Bug Bounty Hunting for Newcomers📣

🎁

Bug bounty hunting can seem appealing, but it’s important to know:

🖱High Skill Level Required: Success in bug bounty hunting demands a very high skill level. It's not just about using tools like Nuclei to scan public programs.

🖱Reality Check: Many see bug bounty hunting as a way to financial freedom or a high-paying job. However, if you have the skills to excel here, you can probably find other well-paying jobs in cybersecurity.

🖱Consider Your Location: Bug bounty hunting might be more attractive if you live in a country with a low average salary. Otherwise, it’s better pursued for fun or experience rather than as your main source of income.

🖱Extra Income and Experience: It can be great for earning extra money and gaining experience, but it’s not a reliable primary income source.

💳Bottom Line: Bug bounty hunting can be enjoyable and rewarding as a side activity, but it’s not the best choice for a main job once you understand the reality of the work involved.

Please open Telegram to view this post

VIEW IN TELEGRAM

👍3

2.38K viewsSaumadip Mandal, 19:19

About

Blog

Apps

Platform