Shobhit Sharma Profile picture
Voz del víctima | I just write, build things & break them | Internet Entrepreneur | Building @Technical0812
28 Nov
This is a curated list by @Hacker0x01 of Burp plugins!

ActiveScan++
Autorepeater Burp
Autorize Burp
BurpSentinel
Flow
Headless Burp
Logger++
WSDL Wizard

#cybersecurity #bugbountytips #hacking #webappsec #webhacking #pentesting

THREAD 👇
@Hacker0x01 ActiveScan++: ActiveScan++ extends Burp Suite’s active and passive scanning capabilities. Designed to add minimal network overhead, it identifies application behavior that may be of interest to advanced testers.
portswigger.net/bappstore/3123…
@Hacker0x01 Autorepeater Burp: Automated HTTP request repeating with Burp Suite.
github.com/nccgroup/AutoR…
Read 13 tweets
18 Aug
The @zseano's recommended basic toolkit for bug hunting!

* Burp Suite
* Amass
* httprobe
* anew
* dnsgen
* aquatone
* FFuF
* Wordlists
- SecLists
- CommonSpeak
* WaybackMachine scanner
* ParamScanner
- InputScanner
- LinkFinder
- parameth
* AnyChanges

THREAD 👇
@zseano Burp Suite @Burp_Suite

Burp Suite allows you to intercept, modify & repeat requests on the fly and you can install custom plugins to make your life easier.

#BugBountyTips #BugBounty #Cybersecurity
@zseano @Burp_Suite Amass @owaspamass by @HazanaSec

The most thorough for discovering subdomains, as it uses the most sources for discovery with a mixture of passive, active and will even do alterations of discovered subdomains

github.com/OWASP/Amass

#BugBountyTips #BugBounty #Cybersecurity
Read 13 tweets
18 Aug
The names, Social Security numbers and information from driver's licenses or other identification of just over 40 million former and prospective customers that applied for T-Mobile credit were exposed in a recent data breach, the company said Wednesday.

t-mobile.com/news/network/c…
We have been working around the clock to investigate claims being made that T-Mobile data may have been illegally accessed. We take the protection of our customers very seriously and we are conducting an extensive analysis alongside digital forensic experts to understand the...
...validity of these claims, and we are coordinating with law enforcement.

1/n
Read 5 tweets
17 Aug
The #UncleRat's FREE Courses & Labs Lists by @theXSSrat | Get Access For Free, & Mention Your Friends | LIKE RETWEET For Others 🔥🔥🔥

#BugBounty #BugBountyTips #Hacking #Cybersecurity

Read This Thread 👇
Read 8 tweets