#bugbountytip Broad scope target: 1) Subdomain enum 2) httprobe 3) subdomain flyover 4) Nuclei (develop your own templates as well) 5) Portscan
Now pay attention
1/4
6) Write subdomains to database for later use 7) If new domain goes into db, do full nuclei scan 8) If new nuclei template, scan old domains
BAM testing <3 9) Optional, do a cronjob every 3 weeks with nuclei
(Companies release new software that might break other things)
2/4
Now we go in manual 10) Look at screenshots
10.a) Subdirectory and file brute forcing all custom login pages
10.b) Look up default credentials for std. accounts 11) Go to google
11.a) site:target.com -www
11.b) site:target.com -mail
3/4
12) Look into interesting targets 13) Parameter discovery for pages you have 14) Run SQLmap on params 15) Run @KN0X55 on URLs with params 16) Investigate repo's like github 17) Look at JS files blog.appsecco.com/static-analysi…
Good luck, I can do more if you want <3
• • •
Missing some Tweet in this thread? You can try to
force a refresh
My amazing hacker rats, please be kind to each other <3 Don't start "exposing" people on profiles they never hack on .. don't start wars.
I did the same and I was wrong to do so, I said sorry in a public tweet for that.
If you want to judge, I will let my students speak though
90 pages of 5 star reviews
43 Pages with 5 star reviews
9 pages with 3 star reviews
4 pages of 2 star reviews
4 pages of 1 star reviews
Over 95 000 students on udemy... I don't think I have anything to be ashamed of :3
Lastly I want to thank everyone for believing in me <3
I have a good heart and it might not always seem like I mean well due to several issues such as autism but I am learning :D I am so happy to speak to every single one of you and the fact that there are better hackers than me with less of a following ... well duh (see next tweet)