Introduction :

While working for browser-based attacks on the URL bar, I learned a way where it was still possible to spoof address bar in safari. None…

Last month I published HTTP Desync Attacks: Request Smuggling Reborn. Since then, there's been a range of new developments. While vendors have been deploying fixes and publishing advisories, I've devi

Tools to play around #JavaScript files + extracting URLs github.com/cablej/FileCha… github.com/003random/getJS github.com/nahamsec/JSPar… github.com/zseano/JS-Scan github.com/Lopseg/Jsdir github.com/jobertabma/rel… github.com/GerbenJavado/L… please add, if…

Whenever i see for bug bounty tips and tricks i wish to make it up a note , The following were the bug bounty tips offered by experts at…

If you are reading is possibly because you:

Prefix While there are lots of security bugs disclosed each week, for us pentesters, some are more special than others. Very recently, a Second Order SQL Injection was reported in Joomla! and a good

Check out the Resources community on Discord - hang out with 608 other members and enjoy free voice and text chat.

Found HTML Injection in a web form but the CSP was blocking execution. I noticed *.google.com was allowed which is common for Google Analytics. Hosted an xss.js payload on Google Drive and found the raw download link. Passed that in to the script src location…

#OneLiner: Search for a file in multiple domains/IPs prips 10.0.0.0/24 | xargs -n1 -I{} sh -c 'python -W ignore -c "import urllib3;urllib3.disable_warnings();print(\"[+] IP: {} -> HTTP Status: \"+str(urllib3.PoolManager().request(\"GET\",\"https://{}/server…

Just found two amazing websites. 1) https://t.co/R5N1MyN87E 2) https://t.co/iiVpDV6PWy These two will boost your recon. https://t.co/GHFejQkzoM keep records of all pastebin pastes which are indexed on google and those which are removed. #Bugbounty #Bugbountytip

Before I start. I want to take a moment to all who helped me learn Web Application Security and Bug Bounty Hunting! :)

A list of resources for those interested in getting started in bug bounties - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters

A few days ago, I stumbled across a new XSS challenge by Intigriti. You could win a Burp license, so I gave it a try! The challenge looked like this: Here is the code in text form again: 123456789(lo

@clew noticed that the [`customerAccessTokenCreate` mutation](https://help.shopify.com/en/api/storefront-api/reference/mutation/customeraccesstokencreate) in the [Storefront...

Exploit for path traversal on JIRA ServiceDesk found by @samwcyo is now public: https://t.co/doUKsBgLip. Use the script after signing up on a website. #bugbountysite