![GodfatherOrwa's tweet photo. Hello everyone ♥
a little bit write-up of #bugbountytip #bugbountytips I am going to write here .....
Title:
getting unauthorized access on 3rd party's/workspaces & and building your checklist for quickly locating bugs there via massive recon
we know that its helpful to look for google
groups/docs/etc..
Slack as well just like when the amazing @h4x0r_dz shared days ago ..
Use google dork "site:https://t.co/ravW2tHHcP"
so I was not in a good mode the last months to doing Google Dorks, so what I did was build a checklist ready for me & very huge one
for EX:
https://t.co/wPxAHXvC18
https://t.co/hs3VHvhT92
https://t.co/ravW2tHHcP
and here is just an example you can add more similar workspaces for your checklist
thin I extracted all internet endpoints and as example here join[.]slack[.]com
https://t.co/OlHQSEQ6Qz
https://t.co/e8jB8H6nMS
https://t.co/w5h4VkESyQ
you can use the ready tools to do it such as waymore
important note: you have to keep your checklist updated every week
and from here I just keep looking for the company name or domain name to see if there's anything connected
and mostly the company name or domain name in the URL it self EX: tesla
https://t.co/QesyI4MHu2
Ex For Bugs found:
1 unauthorized access to the workspaces
(PII | Information disclose)
2 account takeover as Ex: valid signup employee link
3 account takeover as Ex: valid reset password employee link
now about Slack, as an example if you found an invitation link for tesla
Tesla https://t.co/QesyI4MHu2 and that link was not valid, don't stop here
it will redirect for Ex:
tesla-internal[.]slack[.]com
here back and start looking manually for endpoints of this subdomain as well EX:
https://t.co/w2dhvfdBhL
now there are a lot of 3rd party's/workspaces I just shared here
slack & Google Docs/groups
What I wrote is a bit long and annoying to some, so I apologize. I hope, as usual, that this will be useful to all who follow me here.
#Bugounty
don't forget to retweet if you like it ♥♥♥](https://pbs.twimg.com/media/GhQSCs4WAAA0DSc.png)
Olivia
Online
Saqib Chand 🇵🇸
@sakyb7
💉 Web & Mobile Penetration tester | OSCP+ | 🐞 Bug Hunter | 🛡 Synack Red Team Member
pwd
Joined October 2017
640 Following
468 Followers
735 Posts
Pinned Tweet
Here is writeup for an interesting Account takeover vulnerability.
#bugbounty #bugbountytip #TogetherWeHitHarder
https://t.co/aZe7EB0SYY
I’ve added here
https://t.co/HoZmigQxkT
PDF file for XSS, it can bypass any waf
for who looking for Stored XSS , and it can be changed to blind if you want to
Simply I encoded the payload as ASCII hex
You can edit the payload over notepad++
#bugbountytips #bugbountytip #bugbounty
JAVASCRIPT IS A GOLDMINE FOR #BugBounty HUNTERS
https://t.co/6YkSO49WOY
Check out my playlist to learn how <3 treat yoselfff rats is freeeee
How to grab subs for a target using subfinder, validate them and extract the text body from each response using httpx and jq, extract a wordlist of keywords using NLP then resolve them using puredns to find valid subdomains 👇
You can also use LLMs and tools like alterx to generate a list of permutations from the extracted wordlist!
❌GraphQL introspection disabled?
✅No problem! Extract all GraphQL operations from Javascript files!
1. go install https://t.co/DQNzYUwAGt
2. Scan the JS URL with -u flag.
🚀View all the GraphQL operations in seconds -- no introspection needed.
If you’re not Jewish but you support Israel
Congrats
You’re one of the dumbest and most gullible motherfuckers on the planet.
$20,300 Bounties from a 200 Hour Hacking Challenge
Credit: Mohammad Zaheri
.
.
.
.
.
.
#bugbountytips #bughunting #infosec
https://t.co/yVX4VQ19An
@AnkitCuriosity @Atlassian @Bugcrowd Can you share some small write up ...? And what type of bug you look on atlassian program?
How we gained full control over 3,000 companies and all their registered branches.
This took us about 3 weeks of studying the target to find about all the vulnerabilities explained.
Hope you enjoy reading!
https://t.co/Gz1xlo7LJb
Hello everyone ♥
a little bit write-up of #bugbountytip #bugbountytips I am going to write here .....
Title:
getting unauthorized access on 3rd party's/workspaces & and building your checklist for quickly locating bugs there via massive recon
we know that its helpful to look for google
groups/docs/etc..
Slack as well just like when the amazing @h4x0r_dz shared days ago ..
Use google dork "site:https://t.co/ravW2tHHcP"
so I was not in a good mode the last months to doing Google Dorks, so what I did was build a checklist ready for me & very huge one
for EX:
https://t.co/wPxAHXvC18
https://t.co/hs3VHvhT92
https://t.co/ravW2tHHcP
and here is just an example you can add more similar workspaces for your checklist
thin I extracted all internet endpoints and as example here join[.]slack[.]com
https://t.co/OlHQSEQ6Qz
https://t.co/e8jB8H6nMS
https://t.co/w5h4VkESyQ
you can use the ready tools to do it such as waymore
important note: you have to keep your checklist updated every week
and from here I just keep looking for the company name or domain name to see if there's anything connected
and mostly the company name or domain name in the URL it self EX: tesla
https://t.co/QesyI4MHu2
Ex For Bugs found:
1 unauthorized access to the workspaces
(PII | Information disclose)
2 account takeover as Ex: valid signup employee link
3 account takeover as Ex: valid reset password employee link
now about Slack, as an example if you found an invitation link for tesla
Tesla https://t.co/QesyI4MHu2 and that link was not valid, don't stop here
it will redirect for Ex:
tesla-internal[.]slack[.]com
here back and start looking manually for endpoints of this subdomain as well EX:
https://t.co/w2dhvfdBhL
now there are a lot of 3rd party's/workspaces I just shared here
slack & Google Docs/groups
What I wrote is a bit long and annoying to some, so I apologize. I hope, as usual, that this will be useful to all who follow me here.
#Bugounty
don't forget to retweet if you like it ♥♥♥
![GodfatherOrwa's tweet photo. Hello everyone ♥
a little bit write-up of #bugbountytip #bugbountytips I am going to write here .....
Title:
getting unauthorized access on 3rd party's/workspaces & and building your checklist for quickly locating bugs there via massive recon
we know that its helpful to look for google
groups/docs/etc..
Slack as well just like when the amazing @h4x0r_dz shared days ago ..
Use google dork "site:https://t.co/ravW2tHHcP"
so I was not in a good mode the last months to doing Google Dorks, so what I did was build a checklist ready for me & very huge one
for EX:
https://t.co/wPxAHXvC18
https://t.co/hs3VHvhT92
https://t.co/ravW2tHHcP
and here is just an example you can add more similar workspaces for your checklist
thin I extracted all internet endpoints and as example here join[.]slack[.]com
https://t.co/OlHQSEQ6Qz
https://t.co/e8jB8H6nMS
https://t.co/w5h4VkESyQ
you can use the ready tools to do it such as waymore
important note: you have to keep your checklist updated every week
and from here I just keep looking for the company name or domain name to see if there's anything connected
and mostly the company name or domain name in the URL it self EX: tesla
https://t.co/QesyI4MHu2
Ex For Bugs found:
1 unauthorized access to the workspaces
(PII | Information disclose)
2 account takeover as Ex: valid signup employee link
3 account takeover as Ex: valid reset password employee link
now about Slack, as an example if you found an invitation link for tesla
Tesla https://t.co/QesyI4MHu2 and that link was not valid, don't stop here
it will redirect for Ex:
tesla-internal[.]slack[.]com
here back and start looking manually for endpoints of this subdomain as well EX:
https://t.co/w2dhvfdBhL
now there are a lot of 3rd party's/workspaces I just shared here
slack & Google Docs/groups
What I wrote is a bit long and annoying to some, so I apologize. I hope, as usual, that this will be useful to all who follow me here.
#Bugounty
don't forget to retweet if you like it ♥♥♥](https://pbs.twimg.com/media/GhQS5zjWcAAJjPz.png)
Read further: https://t.co/2rgugGaCL6
@CristiVlad25 Can you post some tutorial or write on this?
Got 2FA? Here are 13 ways to test its security.
https://t.co/TSxCMK8gcP
@Fatnass1F1ras @msftsecresponse Can you share some bugs writeup which are discovered in microsoft..? I want to read it before I get started on msftresponse
https://t.co/UR1H2Dsfaz
Our talk was accepted at @defcon this summer! Come watch @LennertWo and I give a talk about the Unsaflok vulnerability in hotel locks and the technical details behind it.
https://t.co/K6HIMf1YDn
How I reverse-engineered an Android app, bypassed custom encryption layer, achieved server-side RCE, and earned a $5000 bounty. read the full story here (TLDR; but worth reading)
https://t.co/xgvffzspiB
Last Seen Users on Sotwe
Elder
Seen from Indonesia
beach sex
Seen from Turkey
Ky` 
Seen from Vietnam
อายุ 40+ ผัวไม่มี นัดไปมั่วๆ เผื่อเจอรักจริง
Seen from Thailand
Gizli paylaşım 18 itiraf et
Seen from Turkey
luciille00
Seen from Indonesia
Star
Seen from Qatar
Linux Format
Seen from United States
pem binor stw
Seen from Singapore
Jasmine
Seen from Saudi Arabia
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers