If a web application allow you to upload a .zip file, zip:// is an interesting PHP wrapper to turn a LFI into a RCE. #BugBounty #BugBountyTips #InfoSec

Content Discovery list critical once #1/3 /_session_start_/%0atest /+CSCOU+/../+CSCOE+/files/file_list.json /josso/%5C../web-console /gui/file_viewer.php?encrypt=N&target_folder=utilities&uploaded_filename=../../../../../../../etc/passwd #bugbounty #BugBountyTips…

Hello Friends,

People who aren’t familiar with townscript, it is a ticketing platform for event managers to sell their tickets online operating on 27+…

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, pas...

What is Rate Limit ?

Today I am writing about the love story between bug bounties & reconnaissance, but before I do I should say that i’m not much of an expert…

Check out my latest video on "Creating Wordlists for Pentesting & Bug Bounty Hunting". I also showed how I use @DanielMiessler's SecLists, @TomNomNom's Waybackurls, or Google's BigQuery to create my own wordlists! LMK what you think of the video! https:/…

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers - tarunkant/Gopherus

Background

TL;DR: Why investing in Electron apps might be a waste of time.

In Russian: https://blog.deteact.com/ru/bitrix-waf-bypass/ UPD: CVE-2020-13758 assigned Sometimes when exploiting reflected XSS the input parameters get injected directly into the body of the <script> tag. Typically, this means that the exploit is trivial:…

Since the dawn of the World Wide Web, attackers have been involved in discovering techniques to compromise systems. Likewise security…

All roads lead to SYSTEM