Online Users
There are currently 2 online users.» 0 Member(s) | 2 Guest(s)
Latest Threads
Cypher Hack the Box Hack The Box Last Post: Hacksudo » Replies: 3» Views: 299
HackTheBox | Titanic Hack The Box Last Post: Hacksudo » Replies: 2» Views: 215
Cat - Hack The Box Hack The Box Last Post: Hacksudo » Replies: 2» Views: 267
XSS & Param Fuzzing via W... Bug Bounty & Web Exploitation Last Post: hashXploiter » Replies: 0» Views: 93
HackerOne Disclosed Repor... Research Papers/Vulnerability reports Last Post: hashXploiter » Replies: 0» Views: 104
HackerOne Disclosed Repor... Research Papers/Vulnerability reports Last Post: hashXploiter » Replies: 0» Views: 77
HackerOne Disclosed Repor... Research Papers/Vulnerability reports Last Post: hashXploiter » Replies: 0» Views: 71
HackerOne Disclosed Repor... Research Papers/Vulnerability reports Last Post: hashXploiter » Replies: 0» Views: 86
HackerOne Disclosed Repor... Research Papers/Vulnerability reports Last Post: hashXploiter » Replies: 0» Views: 89
HackerOne Disclosed Repor... Research Papers/Vulnerability reports Last Post: hashXploiter » Replies: 0» Views: 100
XSS & Param Fuzzing via Wayback + Nuclei Bug Bounty & Web Exploitation
No Replies
hashXploiter , 06-10-2025, 12:21 AM
Sharing a quick and effective one-liner to discover parameter-based vulnerabilities like XSS using archived URLs and fuzzing templates.Single Subdomain One-Liner:
Code:
echo sub.target.com | waybackurls \
Multiple Subdomains (List from subs.txt): Code:
cat subs.txt | while read sub; do
Requirements: You are not allowed to view links. Register or Login to view. You are not allowed to view links. Register or Login to view. You are not allowed to view links. Register or Login to view. You are not allowed to view links. Register or Login to view. You are not allowed to view links. Register or Login to view. Optional Speed Boost: Code:
cat subs.txt | xargs -P 10 -I{} bash -c \
MEDUSA Mobile & IoT Security
No Replies
hashXploiter , 04-29-2025, 06:59 PM
MEDUSA is an extensible and modularized framework that automates processes and techniques practiced during the dynamic analysis of Android and iOS Applications.
Intercept common API calls by using ready made modules
Automate the creation of complex Frida scripts
Inspect the application's memory
Manage and categorise hooks by adding them in to modules
Automate long-taking / boring processes
Register or Login to view.Register or Login to view.
JSMON CLI - Find ALL hidden API endpoints directly from JavaScript files Bug Bounty & Web Exploitation
No Replies
hashXploiter , 04-26-2025, 09:23 PM
JSMON CLI is a command-line interface for interacting with the jsmon.sh web application. It provides a convenient way to access various features of JSMON directly from your terminal.Features
Upload URLs for scanning
Rescan previously scanned URLs
Upload and scan files
View scan results
Manage domains
Set up and manage cron jobs for automated scanning
Compare JavaScript responses
View user profile and usage information
Register or Login to view.
403 Bypass Techniques Bug Bounty & Web Exploitation
No Replies
hashXploiter , 03-23-2025, 01:15 PM
extensive and updated reference for 403 (Forbidden) bypass techniques and tricks for bug bounty hunters and penetration testers.Register or Login to view.
Caido - A lightweight web security auditing toolkit Bug Bounty & Web Exploitation
No Replies
hashXploiter , 03-23-2025, 01:11 PM
Installing Caido on Windows
Download the Caido installer package for Windows from the dashboard or Github repository.
Open the downloaded package and follow the prompts to install Caido on your system.
Once the installation is complete, you can launch Caido from the Start menu or by searching for it in the Windows search bar.
Installing Caido on Linux Download the Caido installer package for Linux from the dashboard or Github repository.
Open a terminal and navigate to the directory where the downloaded package is located.
Use the command sudo dpkg -i <package-name> to install Caido.
Once the installation is complete, you can launch Caido by running the caido command in the terminal.
Installing Caido on MacOS Download the Caido installer package for macOS from the dashboard or Github repository.
Open the downloaded package and follow the prompts to install Caido on your system.
Once the installation is complete, you can launch Caido from the Applications folder or by searching for it in Spotlight.
Register or Login to view.Register or Login to view.
HackTheBox: Vintage Discussion Hack The Box
No Replies
bob_naaya , 03-11-2025, 10:38 PM
Machine: You are not allowed to view links. Register or Login to view.
![[Image: 1745874179625?e=1749081600&v=beta&t=Cev6...GtMT2jWYUc]](https://media.licdn.com/dms/image/v2/D5622AQEUpdbNSp0tVQ/feedshare-shrink_800/B56ZZ.NdKgGkAg-/0/1745874179625?e=1749081600&v=beta&t=Cev6UealtrYNivFSO6Bthh67jnngN_IuGGtMT2jWYUc)
![[Image: logo.svg]](https://raw.githubusercontent.com/Ch0pin/medusa/master/libraries/logo.svg){kind=logo}
![[Image: landing_image.M1TLlug_.png]](https://docs.caido.io/assets/landing_image.M1TLlug_.png)
![[Image: bypassing-amsi-and-av-parameters.png?w=1...=100&ssl=1]](https://i0.wp.com/practicalsecurityanalytics.com/wp-content/uploads/2025/02/bypassing-amsi-and-av-parameters.png?w=1354&quality=100&ssl=1)
![[Image: bypassing-amsi-and-av-detection-hirustot...=100&ssl=1]](https://i0.wp.com/practicalsecurityanalytics.com/wp-content/uploads/2025/02/bypassing-amsi-and-av-detection-hirustotal.png?resize=1536%2C644&quality=100&ssl=1)
![[Image: GlNcUnoXMAMGqQt?format=jpg&name=medium]](https://pbs.twimg.com/media/GlNcUnoXMAMGqQt?format=jpg&name=medium)
