Aakash Choudhary Profile picture
Dedicate to learn new things and sharing my knowledge SRT Member
Sep 16, 2022 22 tweets 5 min read
#bugbountytips #learn #learn365 #SSRF

Let's learn SSRF in a Thread 🧵

Here is my notes on SSRF (Just Basics) -> SSRF → Server Side Request Forgery Attack

In this attack, vulnerable server accept user’s request without filtering and thus trusting user’s input and give back response to user
Sep 10, 2022 22 tweets 4 min read
Hi Friends #bugbountytips #recon #bugbountytip

Here is a good thread of my brother @tabaahi_

Beside this I am also gonna share my old Notes on Recon which I shared in past but again sharing

Below is thread 🧵🧵🧵🧵 1. Finding all subdomains -> amass + assetfinder + findomain + subfinder + github-subdomain

2. Sort and Unique mean merge them to all-subdomains.txt

3. Resolve those subdomains - is ip/domain live?

4. check for alive subdomains -> httpx or httprobe -> prefer httpx