BugXplorer
@bugxplorer
7.69K subscribers
196 photos
3 videos
56 files
3.8K links
Contacts:
mail: joelblack@protonmail.com
tg: @joe1black

Other:
twitter: https://x.com/BugXpl0rer
Download Telegram
About
Blog
Apps
Platform
Join
BugXplorer
7.69K subscribers
BugXplorer
https://www.yeswehack.com/learn-bug-bounty/dom-explorer-tool-parse-html
YesWeHack
Dom-Explorer launched to reveal how browsers parse HTML, mutated XSS
Learn about Dom-Explorer, a new open-source tool for understanding how popular browsers parse HTML and uncovering mutation XSS vulnerabilities.
👍5🔥4
3.48K viewsj b
BugXplorer
https://youtu.be/mLzxwmNoAI4?si=1HkHlVsi6VSjpec4
YouTube
Digging for XSS Gold: Unearthing Browser Quirks with Shazzer
In this talk, you'll discover why Shazzer was built and how it streamlines the fuzzing process. Gareth Heyes dives deep into its unique fuzz types, exploring when and why to use each one for optimal result, as well as using the simple and advanced placeholders.…
👍4🔥4
3.51K viewsj b
BugXplorer
InfoSec Black Friday Deals 2024

All the deals for InfoSec related software/tools this coming Black Friday.

https://github.com/0x90n/InfoSec-Black-Friday

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
1🔥6👍2
3.48K viewsj b, edited  
BugXplorer
Sketchy Cheat Sheet - Story of a Cloud Architecture Diagramming Tool gone wrong

https://jdomeracki.github.io/2024/11/09/sketchy_cheat_sheet/

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
👍4🔥3
2.67K viewsj b, edited  
BugXplorer
Paged Out! #5
https://pagedout.institute/download/PagedOut_005.pdf

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥4👍3
2.92K viewsj b
BugXplorer
Crafting your bug bounty methodology: A complete guide for beginners

https://blog.intigriti.com/hacking-tools/crafting-your-bug-bounty-methodology-a-complete-guide-for-beginners

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥6👍3
3K viewsj b
BugXplorer
PimpMyBurp #11 – Master Signed Token Exploits with SignSaboteur

https://www.yeswehack.com/learn-bug-bounty/pimpmyburp-signsaboteur-burpsuite-extension

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥5👍1
2.85K viewsj b
BugXplorer
URLFinder is a high-speed tool for passively gathering URLs, optimized for efficient web asset discovery without active scanning

https://github.com/projectdiscovery/urlfinder

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥10👍9🤮6
3.05K viewsj b
BugXplorer
Broken authentication: A complete guide to exploiting advanced authentication vulnerabilities

https://blog.intigriti.com/hacking-tools/broken-authentication-a-complete-guide-to-exploiting-advanced-authentication-vulnerabilities

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥6👍5
3.81K viewsj b
BugXplorer
Bypassing WAFs with the phantom $Version cookie

https://portswigger.net/research/bypassing-wafs-with-the-phantom-version-cookie

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥4👍3
3.29K viewsj b
BugXplorer
CSPT the Eval Villain Way!

https://blog.doyensec.com/2024/12/03/cspt-with-eval-villain.html

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥4👍2
2.91K viewsj b
BugXplorer
Intigriti Bug Bytes #219 - December 2024 🎅

https://blog.intigriti.com/bug-bytes/bug-bytes-219-december-2024

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥3👍2
2.68K viewsj b
BugXplorer
Insecure file uploads: A complete guide to finding advanced file upload vulnerabilities

https://blog.intigriti.com/hacking-tools/insecure-file-uploads-a-complete-guide-to-finding-advanced-file-upload-vulnerabilities

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
👍4🔥2
2.95K viewsj b
BugXplorer
Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.

https://github.com/projectdiscovery/notify

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥4👍2
3.19K viewsj b
BugXplorer
It's a series of articles all about web front-end security.

https://aszx87410.github.io/beyond-xss/en/

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥5👍2
3.14K viewsj b
BugXplorer
Payment Bypass Guide for Bug Bounty | 69 case studies

https://medium.com/@illoyscizceneghposter/payment-bypass-guide-for-bug-bounty-69-case-studies-15379b4f76fa

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥7👍3
4.03K viewsj b
BugXplorer
Writing Burp Bambda Filters Like a Boss

https://danaepp.com/writing-burp-bambda-filters

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
👍6🔥4
3.07K viewsj b
BugXplorer
ParamScan is a simple browser extension for web security enthusiasts and pen testers. It helps you find URL parameters in a webpage's source code and check if any of them are reflected on the page. This is super useful for spotting potential XSS vulnerabilities and other security issues.

https://github.com/ch1y0w0/ParamScan

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
👍10🔥5
3.39K viewsj b
BugXplorer
Hunting for blind XSS vulnerabilities: A complete guide

https://www.intigriti.com/researchers/blog/hacking-tools/hunting-for-blind-cross-site-scripting-xss-vulnerabilities-a-complete-guide

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
4👍6🔥3
3K viewsj b
BugXplorer
https://portswigger.net/research/top-ten-web-hacking-techniques-of-2024-nominations-open
PortSwigger Research
Top 10 web hacking techniques of 2024: nominations open
Nominations are now open for the top 10 new web hacking techniques of 2024! Every year, security researchers from all over the world share their latest findings via blog posts, presentations, PoCs, an
🔥6👍2
2.6K viewsj b
BugXplorer
Bypassing File Upload Restrictions To Exploit Client-Side Path Traversal

https://blog.doyensec.com/2025/01/09/cspt-file-upload.html

🪳@bugxplorer
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥8👍1
3.27K viewsj b