ExploitHub – Telegram

ExploitHub

6.39K subscribers

18 photos

1 video

15 files

348 links

Download Telegram

About

Blog

Apps

Platform

6.39K subscribers

https://github.com/w181496/Web-CTF-Cheatsheet

GitHub - w181496/Web-CTF-Cheatsheet: Web CTF CheatSheet 🐈

Web CTF CheatSheet 🐈. Contribute to w181496/Web-CTF-Cheatsheet development by creating an account on GitHub.

2.2K views03:37

Dropbox bug bounty program has paid out over $1,000,000
https://blogs.dropbox.com/tech/2020/02/dropbox-bug-bounty-program-has-paid-out-over-1000000/

2.0K views03:42

A Not-So-Blind RCE with SQL Injection
https://medium.com/@notsoshant/a-not-so-blind-rce-with-sql-injection-13838026331e

A Not-So-Blind RCE with SQL Injection

This is a story of a typical xp_cmdshell giving a RCE which is blind due to some restrictions and how I bypassed those restrictions.

1.9K views03:42

Forwarded from h1disclosebot

GitHub Security Lab disclosed a bug submitted by calderpwn: https://t.co/kJySKZdV0Z - Bounty: $1,000 #hackerone… https://t.co/x9GJt0F42A

GitHub Security Lab disclosed on HackerOne: CodeQL query to detect...

Report created by importer

1.8K views03:59

https://medium.com/comm-it/binary-exploitation-ret2libc-e812074bb45b?source=search_post

Binary Exploitation — ret2libc

In this post, I would like to share a binary exploitation example from PicoCTF-2018 called got-2-learn-libc.

1.9K views04:02

https://medium.com/bugbountywriteup/binary-exploitation-5fe810db3ed4?source=search_post

Modern Binary Exploitation Writeups 0x01

This is the writeup of Modern Binary Exploitation course by RIPSEC.

1.8K views04:02

https://medium.com/swlh/binary-exploitation-format-string-vulnerabilities-70edd501c5be

Binary Exploitation: Format String Vulnerabilities

And how printing a string led to code execution?!!

1.7K views04:02

https://medium.com/bugbountywriteup/binary-exploitation-5fe810db3ed4

Modern Binary Exploitation Writeups 0x01

This is the writeup of Modern Binary Exploitation course by RIPSEC.

1.8K views04:02

WebSocket attacks

1. https://t.co/1V2XJnYsrc
2. https://t.co/jbIZKoIflw
3. https://t.co/Fg7uUwd7YB
4. https://t.co/jOVTIFWUEk
5. https://t.co/iiVV2uzm0J
6. https://t.co/iiVV2uzm0J
7. https://t.co/iiVV2uzm0J
8. https://t.co/nRqwcFe4zX

#bugbounty #bugbountytips

cat ~/footstep.ninja/blog.txt

The HTML5 Herald

1.9K views04:06

OK Google: bypass the authentication! https://techblog.mediaservice.net/2020/01/ok-google-bypass-the-authentication/

1.8K views04:45

https://medium.com/@04sabsas/xss-will-never-die-eb3584081a5f

XSS will never die

Stories about 5 very different XSS

1.7K views05:51

https://medium.com/@mashoud1122/cors-misconfiguration-account-takeover-out-of-scope-to-grab-items-in-scope-66d9d18c7a46?_branch_match_id=707566237215225139

CORS Misconfiguration to Account TakeOver [Out of scope to grab items In-Scope]

Hi, i’m Mashoud.

1.7K views05:55

https://medium.com/@smilehackerofficial/how-i-found-rce-but-got-duplicated-ea7b8b010990

How I found RCE But Got Duplicated

So first of All i can not show You the Name Of the Site Because Of security Issue But Let me tell You How Was I am able to bypass the file…

1.7K views05:55

Advanced Recon Automation (Subdomains) case 1
https://medium.com/soulsecteam/advanced-recon-automation-subdomains-case-1-9ffc4baebf70

Advanced Recon Automation (Subdomains) case 1

The advanced in simple Recon!

1.7K views05:55

Expanding your scope (Recon automation #2)

https://poc-server.com/blog/2019/01/31/expanding-your-scope-recon-automation/

1.7K views05:55

XML External Entity (XXE) Injection Payload List

https://www.kitploit.com/2019/11/xml-external-entity-xxe-injection.html

KitPloit - PenTest & Hacking Tools

XML External Entity (XXE) Injection Payload List

1.7K views05:55

https://www.youtube.com/watch?v=77NhN1G7wFo

Reflected XSS at shopify | $1,500 | bug bounty 2019

Reflected XSS | $1,500
.
.

For Contact:-
https://www.instagram.com/justluthra/

1.7K views05:55

https://medium.com/@rudrasarkar/how-i-hacked-92k-users-information-using-open-s3-bucket-6471b30c1cf5

How I hacked 92k users Information using open s3 bucket

First of all this is my biggest hack I did in my life.The website I found few day ago while I am looking for bus ticket.After booking Bus…

1.7K views05:55

https://www.youtube.com/watch?v=FqXVgCfUX0Q

Web Hacking: How to Find CRLF Injection Vulnerabilities

White Hat Hacking: https://goo.gl/XNEni8

In this White Hat Hacking second video tutorial, I show you how we can find CRLF Injection vulnerabilities using Burb Suite. Specifically, we look at Shopify.com and how we can manipulate a value which is subsequently…

1.7K views05:55

https://www.youtube.com/watch?v=ldyK2AG9168

1.8K views05:55

https://blog.lucideus.com/2019/12/Web-Application-Security-Assessment-2.html

1.8K views05:55