Bug Bounty
Javascript Question!!
Q) [] == ''
Q) [] == ''
In JS (==) convert both values in the same type. In this case Empty String and Empty Array both are boolean value of false
So, they evaluate as equal
So, they evaluate as equal
👍11
Bug Bounty
Javascript Question!!
One of these will not give a syntax error!!
One of these will not give a syntax error!!
Undefined is not a reserved keyword
Bug Bounty
Javascript Question!!
what is the Length of theArray
Q) let theArrray = [, , , , ,]
what is the Length of theArray
Q) let theArrray = [, , , , ,]
In js array, it ignore last ,
👍2
Bug Bounty
Javascript Question
Mark the correct output
Q) !!"false" == !!"true";
Mark the correct output
Q) !!"false" == !!"true";
If a string is not empty == will convert it into boolean value of true so they both are equal 😊
😁6
👍12👎2😁1
Javascript Question!!
Q: What is the output of the following code?
let x = 1; if (function f(){}) { x += typeof f; }
Q: What is the output of the following code?
let x = 1; if (function f(){}) { x += typeof f; }
Anonymous Quiz
32%
Error
34%
"Number"
33%
"1undefined"
👎6🔥3
If You wanna Enter the field of Android Penetration Testing
Then, You should Open This Thread 🧵
Check Out My Thread Tweet: https://twitter.com/Aacle_/status/1613027118874759170?s=20&t=OsOm8ggHNNP9PY3yJYfLdA
Then, You should Open This Thread 🧵
Check Out My Thread Tweet: https://twitter.com/Aacle_/status/1613027118874759170?s=20&t=OsOm8ggHNNP9PY3yJYfLdA
👏4🔥1
🤯11👍5
Bug Bounty
Js Question
const Früh = "foobar";
Will this assignment work ?
const Früh = "foobar";
Will this assignment work ?
js support unicode so 'ü' this is allowed in the variable name so the answer is true!!
👍4
Javascript Question!!
Q8) if '50'+1 is 501
What will be '40'-1 ?
Q8) if '50'+1 is 501
What will be '40'-1 ?
Anonymous Quiz
23%
400
31%
401
47%
39
👍10
🚀 API SECURITY TIP
"Trying to find BOLA (IDOR) in APIs, got 401/403 errors? AuthZ bypass tricks:
• Wrap ID with an array {“id”:111} --> {“id”:[111]}
• JSON wrap {“id”:111} --> {“id”:{“id”:111}}
• Send ID twice URL?id=<LEGIT>&id=<VICTIM>
• Send wildcard {""user_id"":""*""}"
"Trying to find BOLA (IDOR) in APIs, got 401/403 errors? AuthZ bypass tricks:
• Wrap ID with an array {“id”:111} --> {“id”:[111]}
• JSON wrap {“id”:111} --> {“id”:{“id”:111}}
• Send ID twice URL?id=<LEGIT>&id=<VICTIM>
• Send wildcard {""user_id"":""*""}"
🔥20❤3👍2
🚀 Amazing XSS Guide
Collection of Awesome XSS resources and help you to understand XSS sanitization and tricks to bypass it
https://github.com/s0md3v/AwesomeXSS
#bugbounty #infosec #hacking #cybersecurity #penetrationtesting
Collection of Awesome XSS resources and help you to understand XSS sanitization and tricks to bypass it
https://github.com/s0md3v/AwesomeXSS
#bugbounty #infosec #hacking #cybersecurity #penetrationtesting
❤19🔥4
Bug Bounty
Javascript Question!!
Q) [1,2,3]==[1,2,3]
Q) [1,2,3]==[1,2,3]
[1,2,3]==[1,2,3] is false because JavaScript actually has two different approaches for testing equality. Primitives like strings and numbers are compared by their value, while objects like arrays, dates, and plain objects are compared by their reference. That comparison by reference basically checks to see if the objects given refer to the same location in memory.
👍9⚡4🔥2🤔2👏1
🤔8👍4👌1
Bug Bounty
Javascript Question!!
Q8) if '50'+1 is 501
What will be '40'-1 ?
Q8) if '50'+1 is 501
What will be '40'-1 ?
In addition between string and integer. Js convert int to string sk '50'+1= 501
But for subtraction it convert string to int so '40'-1=39
But for subtraction it convert string to int so '40'-1=39
👍10😐6👏1
#BugBountyTips
If the server only allows the GET and POST methods, then try adding “X-HTTP-Method -Override: PUT to achieve RCE via the PUT method.
Although Now it's a rare case but it works. So, Do consider this also
If the server only allows the GET and POST methods, then try adding “X-HTTP-Method -Override: PUT to achieve RCE via the PUT method.
Although Now it's a rare case but it works. So, Do consider this also
👍25
Bug Bounty Automation -{ Oneliner Commands }
- { V2 }
#bugbounty #Infosec #cybersecurity #hacking
👇🏼👇🔻🔻👇🏼👇
- { V2 }
#bugbounty #Infosec #cybersecurity #hacking
👇🏼👇🔻🔻👇🏼👇
🔥8👍1😱1