BugXplorer – Telegram

BugXplorer

7.69K subscribers

196 photos

3 videos

56 files

3.8K links

Contacts:
mail: joelblack@protonmail.com
tg: @joe1black

Other:
twitter: https://x.com/BugXpl0rer

Download Telegram

About

Blog

Apps

Platform

7.69K subscribers

Insecure file uploads: A complete guide to finding advanced file upload vulnerabilities

https://blog.intigriti.com/hacking-tools/insecure-file-uploads-a-complete-guide-to-finding-advanced-file-upload-vulnerabilities

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

👍4🔥2

2.95K viewsj b, 13:00

Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.

https://github.com/projectdiscovery/notify

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥4👍2

3.19K viewsj b, 12:23

It's a series of articles all about web front-end security.

https://aszx87410.github.io/beyond-xss/en/

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥5👍2

3.14K viewsj b, 14:01

Payment Bypass Guide for Bug Bounty | 69 case studies

https://medium.com/@illoyscizceneghposter/payment-bypass-guide-for-bug-bounty-69-case-studies-15379b4f76fa

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥7👍3

4.03K viewsj b, 12:11

Writing Burp Bambda Filters Like a Boss

https://danaepp.com/writing-burp-bambda-filters

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

👍6🔥4

3.07K viewsj b, 10:22

ParamScan is a simple browser extension for web security enthusiasts and pen testers. It helps you find URL parameters in a webpage's source code and check if any of them are reflected on the page. This is super useful for spotting potential XSS vulnerabilities and other security issues.

https://github.com/ch1y0w0/ParamScan

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

👍10🔥5

3.39K viewsj b, 15:25

Hunting for blind XSS vulnerabilities: A complete guide

https://www.intigriti.com/researchers/blog/hacking-tools/hunting-for-blind-cross-site-scripting-xss-vulnerabilities-a-complete-guide

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

4👍6🔥3

3K viewsj b, 08:11

https://portswigger.net/research/top-ten-web-hacking-techniques-of-2024-nominations-open

PortSwigger Research

Top 10 web hacking techniques of 2024: nominations open

Nominations are now open for the top 10 new web hacking techniques of 2024! Every year, security researchers from all over the world share their latest findings via blog posts, presentations, PoCs, an

🔥6👍2

2.6K viewsj b, 14:14

Bypassing File Upload Restrictions To Exploit Client-Side Path Traversal

https://blog.doyensec.com/2025/01/09/cspt-file-upload.html

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥8👍1

3.27K viewsj b, 12:04

Intigriti Bug Bytes #220 - January 2025

https://www.intigriti.com/researchers/blog/bug-bytes/bug-bytes-220-january-2025

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

👍6🔥3

2.62K viewsj b, 08:53

The list of the most interesting research of 2024. Read and vote!

https://portswigger.net/polls/top-10-web-hacking-techniques-2024

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥6👍3

2.77K viewsj b, 16:34

Bug Bounty Recon Series #1: Discover and Map Hidden Endpoints and Parameters

https://www.yeswehack.com/learn-bug-bounty/discover-map-hidden-endpoints-parameters

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥5👍1

2.82K viewsj b, 09:51

Open URL redirects: A complete guide to exploiting open URL redirect vulnerabilities

https://www.intigriti.com/researchers/blog/hacking-tools/open-url-redirects-a-complete-guide-to-exploiting-open-url-redirect-vulnerabilities

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥5👍1

2.4K viewsj b, 08:40

Next.js, cache, and chains: the stale elixir

https://zhero-web-sec.github.io/research-and-things/nextjs-cache-and-chains-the-stale-elixir

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥8👍5

2.63K viewsj b, 10:33

Stealing HttpOnly cookies with the cookie sandwich technique

https://portswigger.net/research/stealing-httponly-cookies-with-the-cookie-sandwich-technique

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥6👍2

2.68K viewsj b, 10:40

Hacking Subaru: Tracking and Controlling Cars via the STARLINK Admin Panel

https://samcurry.net/hacking-subaru

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

👍5🔥5

2.24K viewsj b, 10:53

Zseano's bug bounty methodology

https://www.bugbountyhunter.com/methodology/zseanos-methodology.pdf

🪳@bugxplorer

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥6😁3👍1👎1

3.17K viewsj b, 13:08

Bypassing character blocklists with unicode overflows

https://portswigger.net/research/bypassing-character-blocklists-with-unicode-overflows

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥5👍3

2.56K viewsj b, 15:09

Exploiting PDF generators: A complete guide to finding SSRF vulnerabilities in PDF generators

https://www.intigriti.com/researchers/blog/hacking-tools/exploiting-pdf-generators-a-complete-guide-to-finding-ssrf-vulnerabilities-in-pdf-generators

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥8👍1

2.81K viewsj b, 17:56

Common OAuth Vulnerabilities

https://blog.doyensec.com/2025/01/30/oauth-common-vulnerabilities.html

OAuth Security Cheat Sheet

https://doyensec.com/resources/Doyensec_OAuth_CheatSheet.pdf

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥8👍2

2.77K viewsj b, 06:52

Top 10 web hacking techniques of 2024

https://portswigger.net/research/top-10-web-hacking-techniques-of-2024

🪳

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥8👍2

2.52K viewsj b, 15:49