Turning #lfi to #rce
Using PHP ZIP Wrapper LFI
The zip wrapper processes uploaded .zip files server side allowing a penetration tester to upload a zip file using a vulnerable file upload function and leverage the zip filter via an LFI to execute. #php#hacking#bugbountytips
Dear @MoPNG_eSeva@PetroleumMin@HardeepSPuri@BPCLimited @bharatgasltd,
Itโs been 15+ days since my Bharat Gas booking, but the distributor is still not delivering the cylinder. They only keep asking me to visit repeatedly. Earlier too, my complaint was ignored not delivered
Dear @MoPNG_eSeva@PetroleumMin@HardeepSPuri@BPCLimited @bharatgasltd,
Itโs been 15+ days since my Bharat Gas booking, but the distributor is still not delivering the cylinder. They only keep asking me to visit repeatedly. Earlier too, my complaint was ignored not delivered
โSuccessfully passed #OSCP exam on my first attempt! hats off to @offsectraining for the amazing course! The advice I can give you, besides trying harder, don't lie to yourself, always put your heart in what you do.
#Offsec#PWK#OffensiveSecurity
Blog is out!
Hope it to be helpful to you guys! ๐ฅบ
I just published I Tried HarderโโโMy OSCP experience! https://t.co/haC1vfflKi
#cybersecurity
#learn365 Day-1: 2FA Bypass Techniques
1. Response Manipulation - In response if "success":false, change it to "success":true
2. Status Code Manipulation - If Status Code is 4xx, try to change it to 200 OK and see if it bypass restrictions.
(1/n)
#bugbountytips
Bug Bounty Tips...
This is how to find sql-Injection 100% of the time
/?q=1
/?q=1'
/?q=1"
/?q=[1]
/?q[]=1
/?q=1`
/?q=1\
/?q=1/*'*/
/?q=1/*!1111'*/
/?q=1'||'asd'||' <== concat string
/?q=1' or '1'='1
/?q=1 or 1=1
/?q='or''='
#bugbounty#BugBountyTips#SQLinjection#hacking#bug
Tweet for them who don't know,
The new way to crack the hash Online with GPU For free
Just follow the instructions on the shell... Work on the go
https://t.co/jCCEDUBtTT
#hashcat#colabcat#cracking#hash