⚒️🤖 PentestGPT
A GPT-empowered #pentesting tool that can solve easy to medium HackTheBox machines, and other CTF challenges 😲
Guess we'll be out of jobs soon 🤔
https://t.co/is1o138qsz
#pentest#redteam#infosec#cybersecurity
CVE-2023-25690: Request Smuggling attack on Apache HTTP Server, 9.8 rating 🔥
An old vulnerability with new POC.
Search on https://t.co/hv7QKSqxTR (>20kk res):
👉🏻 Link (tags): https://t.co/jACANLgspf
👉🏻 Link (no tags): https://t.co/DB1skILSBI
#vulnerability_map#cybersecurity
For anyone starting out in cybersecurity, heed this warning:
Social proof is easy to manufacture. There are a few cybersecurity-focused accounts with a lot of followers who have no idea what they're talking about.
When deciding who to follow: don't rely on social proof solely.
@bughunty gau [host] -subs | cut -d"?" -f1 | grep -E "\.js+(?:on|)$" | tee urls.txt
sort -u urls.txt | fff -s 200 -o out/
"After we save response from known URLs, it's time to digging for secrets."
"Usage"
for i in `gf -list`; do [[ ${i} =~ "_secrets"* ]] && gf ${i}; done
How about "Top 10 Free Labs to Master Web Security"
Thread 🧵:👇
1) PortSwigger Web Security Academy: This lab provides free online training in web application security. Through a variety of fun lessons, it shows you how to find and exploit web application vulnerabilities.
Study Cybersecurity for FREE
Cybersecurity Career Roadmap: https://t.co/2py4gFROuZ
Intro to Networking: https://t.co/uDq1AUNk3j
Intro to Security: https://t.co/1Bz3NeWlGB
Intro to Linux: https://t.co/wP8zifxGI1
Intro to Python: https://t.co/OhEwJqriJr
Guys, I know web3 security is very lucrative and interesting for most of you, but understand this:
YOU HAVE TO PUT THE HOURS IN!
Spend a lot of time reading smart contracts (later I will write a tweet for the most important ones to get started). 👇
You want to start a Cybersecurity Career
But you don't have $22,417 for a 12 month bootcamp
I'll show you how to do it FASTER AND BETTER
FOR FREE
IN A RECESSION
(Free resources with links for EVERYTHING you need to start an $80k/y Cybersecurity Career in 90 days):
[𝐅𝐑𝐄𝐄 𝐑𝐄𝐒𝐎𝐔𝐑𝐂𝐄𝐒 - 𝐌𝐎𝐁𝐈𝐋𝐄 𝐀𝐏𝐏 𝐏𝐄𝐍𝐓𝐄𝐒𝐓]
Want to know more about Mobile App pentest? Here is a list of resources
👉 Android Bug Bounty Hunting: Hunt Like a Rat by @theXSSrat
https://t.co/1j2rWY83YU