If you want to master SSRF, open this thread!
Server-Side Request Forgery vulnerabilities are attacks that allow attackers to send arbitrary requests from the server often resulting in gaining authorized access to data!🤯
[1️⃣] Server-side request forgery by
@PortSwigger
[ https://portswigger.net/web-security/ssrf ]
As always, when talking about web vulnerabilities, PortSwigger academy is the place to go! Their labs offer a great way to practice your skills as well!
[2️⃣] SSRF in 100 seconds by
@PinkDraconian
[ https://youtu.be/3dKavgfL2pA ]
Want a quick overview of what SSRF is? Check out this video explaining SSRF in 100 seconds!
[3️⃣] SSRF Techniques mindmap
[ https://xmind.app/m/eJm7bd/# ]
A mindmap is a great way to visualize what SSRF techniques there are! We couldn't find the author of this mindmap, meaning we can't give credit. If you know who created it, let us know! 💪
[4️⃣] Bug bounty writeup by
@win3zz
[ https://medium.com/@win3zz/how-i-made-31500-by-submitting-a-bug-to-facebook-d31bb046e204 ]
SSRF is one of the most found vulnerabilities in bug bounty. There are tons of great writeups out there, but we really liked this on granting a HUGE bounty on Facebook!
[5️⃣] SSRFMap by
@pentest_swissky
[ https://github.com/swisskyrepo/SSRFmap ]
Exploiting SSRF vulnerabilities can often be quite hard, this framework can help you out and make it a bit less time-intensive!
[6️⃣] Cheatsheet by
@pentest_swissky
[ https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Server%20Side%20Request%20Forgery/README.md ]
Want a concise overview of different SSRF filter bypasses? Check out this amazing cheatsheet!
[7️⃣] Hackademy by
@intigriti
[ https://blog.intigriti.com/hackademy/server-side-request-forgery-ssrf/ ]
Did you know that Intigriti has its very own hackademy? This is the place for you to learn about a bunch of security issues!
Post by intigriti
Server-Side Request Forgery vulnerabilities are attacks that allow attackers to send arbitrary requests from the server often resulting in gaining authorized access to data!🤯
[1️⃣] Server-side request forgery by
@PortSwigger
[ https://portswigger.net/web-security/ssrf ]
As always, when talking about web vulnerabilities, PortSwigger academy is the place to go! Their labs offer a great way to practice your skills as well!
[2️⃣] SSRF in 100 seconds by
@PinkDraconian
[ https://youtu.be/3dKavgfL2pA ]
Want a quick overview of what SSRF is? Check out this video explaining SSRF in 100 seconds!
[3️⃣] SSRF Techniques mindmap
[ https://xmind.app/m/eJm7bd/# ]
A mindmap is a great way to visualize what SSRF techniques there are! We couldn't find the author of this mindmap, meaning we can't give credit. If you know who created it, let us know! 💪
[4️⃣] Bug bounty writeup by
@win3zz
[ https://medium.com/@win3zz/how-i-made-31500-by-submitting-a-bug-to-facebook-d31bb046e204 ]
SSRF is one of the most found vulnerabilities in bug bounty. There are tons of great writeups out there, but we really liked this on granting a HUGE bounty on Facebook!
[5️⃣] SSRFMap by
@pentest_swissky
[ https://github.com/swisskyrepo/SSRFmap ]
Exploiting SSRF vulnerabilities can often be quite hard, this framework can help you out and make it a bit less time-intensive!
[6️⃣] Cheatsheet by
@pentest_swissky
[ https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Server%20Side%20Request%20Forgery/README.md ]
Want a concise overview of different SSRF filter bypasses? Check out this amazing cheatsheet!
[7️⃣] Hackademy by
@intigriti
[ https://blog.intigriti.com/hackademy/server-side-request-forgery-ssrf/ ]
Did you know that Intigriti has its very own hackademy? This is the place for you to learn about a bunch of security issues!
Post by intigriti
👍15🔥4❤1
Open Redirect To XSS
Payloads : https://book.hacktricks.xyz/pentesting-web/open-redirect#open-redirect-to-xss
#bugbounty #infosec #cybersecurity #hacking
Payloads : https://book.hacktricks.xyz/pentesting-web/open-redirect#open-redirect-to-xss
#bugbounty #infosec #cybersecurity #hacking
🔥10👍4👎1🤔1
🔰 Top 10 Mistakes & Myths Of Bug bounty hunting
https://bugbountyguide.org/2022/12/16/top-10-mistakes-myths-in-bug-bounty-hunting/
https://bugbountyguide.org/2022/12/16/top-10-mistakes-myths-in-bug-bounty-hunting/
👍9🔥3
Complete OSCP Guide With Active Directory
Amazing Article Contains :
• lots of tips
• Recommended Tools For Active Directory
• Recommended Labs To Solve For Active Directory
• Cheatsheet
• Resources
Take 👇 : Look
https://bugbountyguide.org/index.php/2022/11/29/oscp-preparation-with-active-directory/
#bugbounty #infosec #oscp
Amazing Article Contains :
• lots of tips
• Recommended Tools For Active Directory
• Recommended Labs To Solve For Active Directory
• Cheatsheet
• Resources
Take 👇 : Look
https://bugbountyguide.org/index.php/2022/11/29/oscp-preparation-with-active-directory/
#bugbounty #infosec #oscp
🔥7👍6👏2❤🔥1🏆1
Found Open Redirection Vulnerability in Google
I'll share POC with you soon
I'll share POC with you soon
🔥49👍6👏3
email verification bypass
• After registering with email 1 you'll get verification link on email 1
• Change email to email 2 instead of verifying email 1
• Check if email verification link sended priviously on email 1 is valid for verifying email 2
• After registering with email 1 you'll get verification link on email 1
• Change email to email 2 instead of verifying email 1
• Check if email verification link sended priviously on email 1 is valid for verifying email 2
👍29🔥17
secondary context fuzzing: 🌵
#bugbounty #infosec
/..%2f
/..;/
/../
/..%00/
/..%0d/
/..%5c
/..\
/..%ff/
/%2e%2e%2f
/.%2e/
/%3f (?)
/%26 (&)
/%23 (#)
via https://samcurry.net/hacking-starbucks/
100 million😲 sbux accounts disclosure
see also: https://docs.google.com/presentation/d/1N9Ygrpg0Z-1GFDhLMiG3jJV6B_yGqBk8tuRWO1ZicV8
#bugbounty #infosec
/..%2f
/..;/
/../
/..%00/
/..%0d/
/..%5c
/..\
/..%ff/
/%2e%2e%2f
/.%2e/
/%3f (?)
/%26 (&)
/%23 (#)
via https://samcurry.net/hacking-starbucks/
100 million😲 sbux accounts disclosure
see also: https://docs.google.com/presentation/d/1N9Ygrpg0Z-1GFDhLMiG3jJV6B_yGqBk8tuRWO1ZicV8
🔥6👍4
Why Security Headers are Important for websites
https://bugbountyguide.org/2022/12/19/why-security-headers-are-important-for-websites/
https://bugbountyguide.org/2022/12/19/why-security-headers-are-important-for-websites/
👍8🔥7
Bug Bounty 🪲 Tip:
Target had a /?back= parameter,
but payloads like javascript://alert(1) did not work.
Exploited using the following with URL-encoded ASCII tab characters:
%09Jav%09ascript:alert(document.domain)
#bugbountytips #bugbounty
Target had a /?back= parameter,
but payloads like javascript://alert(1) did not work.
Exploited using the following with URL-encoded ASCII tab characters:
%09Jav%09ascript:alert(document.domain)
#bugbountytips #bugbounty
👍23🔥6
The Game of HTTP Request And Response
https://bugbountyguide.org/2022/12/23/understand-the-game-of-http-request-and-response/
#bugbounty #Infosec
https://bugbountyguide.org/2022/12/23/understand-the-game-of-http-request-and-response/
#bugbounty #Infosec
👍13
All Network Services & Ports with Enumeration techniques
https://bugbountyguide.org/2022/12/24/all-network-services-ports-enumeration/
https://bugbountyguide.org/2022/12/24/all-network-services-ports-enumeration/
🔥14👍4❤2
✨ Huge Bug Bounty Mindmap
https://bugbountyguide.org/bug-bounty/mindmaps-cheatsheets#Bug-bounty-mindmap
https://bugbountyguide.org/bug-bounty/mindmaps-cheatsheets#Bug-bounty-mindmap
👍14🔥4
Web Application Security Mindmap
https://bugbountyguide.org/bug-bounty/mindmaps-cheatsheets/#Web%20Application%20Security%20Mindmap
#bugbounty #infosec
https://bugbountyguide.org/bug-bounty/mindmaps-cheatsheets/#Web%20Application%20Security%20Mindmap
#bugbounty #infosec
👍8🔥2
An interesting trick: you can bypass a WAF during a XSS attack on ASP(dot)NET/IIS technology by using a HTTP parameter pollution attack.
#BugBounty #BugBountyTips #InfoSec
(Credit to Acunetix)
Full article: https://acunetix.com/blog/whitepaper-http-parameter-pollution/
#BugBounty #BugBountyTips #InfoSec
(Credit to Acunetix)
Full article: https://acunetix.com/blog/whitepaper-http-parameter-pollution/
❤13🔥4