Discover and read the best of Twitter Threads about #bubgounty
Most recents (2)
β‘ Base Steps :
1. Create two accounts if possible or else enumerate users first.
2. Check if the endpoint is private or public and does it contains any kind of id param.
3. Try changing the param value to some other user and see if does anything to their account.
π§΅(2/n) :π
1. Create two accounts if possible or else enumerate users first.
2. Check if the endpoint is private or public and does it contains any kind of id param.
3. Try changing the param value to some other user and see if does anything to their account.
π§΅(2/n) :π
β‘ Testcase 1: Add IDs to requests that donβt have them
GET /api/MyPictureList β /api/MyPictureList?user_id=<other_user_id>
Pro tip: You can find parameter names to try by deleting or editing other objects and seeing the parameter names used.
π§΅(3/n) :π
GET /api/MyPictureList β /api/MyPictureList?user_id=<other_user_id>
Pro tip: You can find parameter names to try by deleting or editing other objects and seeing the parameter names used.
π§΅(3/n) :π
SSH Tunneling / Pivoting π΅
1. Local port forwarding
2. Remote port forwarding
3. Dynamic port forwarding
4. sshuttle
5. Plink local port forwarding
#cybersecurity #hacking #bubgounty #bugbountytips #infosec
1/3 ππΏβ
1. Local port forwarding
2. Remote port forwarding
3. Dynamic port forwarding
4. sshuttle
5. Plink local port forwarding
#cybersecurity #hacking #bubgounty #bugbountytips #infosec
1/3 ππΏβ
1. Local port forwarding
ssh <gateway> -L <local port to listen>:<remote host>:<remote port>
2. Remote port forwarding
ssh <gateway> -R <remote port to bind>:<local host>:<local port>
3. Dynamic port forwarding
ssh -D <local proxy port> -p <remote port> <target>
2/3 ππΏβ
ssh <gateway> -L <local port to listen>:<remote host>:<remote port>
2. Remote port forwarding
ssh <gateway> -R <remote port to bind>:<local host>:<local port>
3. Dynamic port forwarding
ssh -D <local proxy port> -p <remote port> <target>
2/3 ππΏβ
4. sshuttle
sshuttle -vvr user@x.x.x.x
5. Plink local port forwarding
plink -l root -pw pass -R 3389:<localhost>:3389 <remote host>
π€π»π₯
Thank You so much for reading this
I'm so thankful to you
Follow me if you want thread like these
3/3 β
sshuttle -vvr user@x.x.x.x
5. Plink local port forwarding
plink -l root -pw pass -R 3389:<localhost>:3389 <remote host>
π€π»π₯
Thank You so much for reading this
I'm so thankful to you
Follow me if you want thread like these
3/3 β
