Latest posts

In this article, I am going to elaborate what are the practical and manual steps an experienced bug hunter takes to uncover Time Based SQL Injection Vulnerability. Meanwhile the beginners will only keep injecting single quote and double quote on all GET request parameters in a hope to see the keyword “error” in the server…

Read more

Step-by-step Linux commands for bug bounty live hunting Recursive Subdomain Enumeration🔍🔍 subfinder -d domain.com -all -recursive > subs_domain.com.txt Filtering live hosts with httpx🚨 cat subs_domain.com.txt | httpx -td -title -sc -ip > httpx_domain.com.txtcat httpx_domain.com.txt | awk ‘{print $1}’ > live_subs_domain.com.txt Port Subs subfinder -d domain.com -all -recursive > subs_domain.com.txtcat subs_domain.com.txt | httpx -silent -ports 80,443,3000,8080,8000,8081,8008,8888,8443,9000,9001,9090 | tee…

Read more