Today when I opened the Twitter app, saw my timeline filled with “Elon Musk is on rampage, he is blocking everyone” tweets. Umm… Twitter drama of everyday… and few seconds later noticed they have ...
Download Single folder from github repo
Many times you want to download only a single folder from a github repo but unfortunately github doesn’t not provide any official feature to do this. But recently I came across one very useful web...
Facebook Bug Bounty Writeups
Facebook Bug Bounty Writeups collected from all over the internet. A Walk in the Workplace 1-800-Flowers Credentials and message log leak via facebook.com/facebook Ability to invite any user t...
List of Red Teaming Tools
### Map of Red Teaming Tools ├───AD │ ├───ACLPwn │ ├───ACL_PWN │ ├───ADAPE │ ├───ADAudit │ ├───ADCollector │ ├───ADpwn │ ├───ADRecon │ ├───ADReconPowershell │ ├───AD_DomainSwevic...
BlackHat talks to watch (2021)
This is a checklist for 2021 BlackHat talks I am planning to read or watch. How I Used a JSON Deserialization 0day to Steal Your Money on the Blockchain Put in One Bug and Pop Ou...
Ways to pop alert in XSS
Many times when testing for XSS, alert(), prompt() and confirm() is blocked by WAF. In situations like these we can use alternative ways to do alert() // Direct invocation alert(document.domain); ...
- 1
- 1 / 1