When you are fuzzing a subdomain, You may find admin panels or even sensitive files. Let’s say you find a .git directory during directory fuzzing, You can download the source code of the application using this git dumper tool https://github.com/arthaud/git-dumper. This source code may contain credentials. You can find many articles related to this issue online.

The Domain 👨‍💻

Before even starting, we need to check if the domain is alive or not, Because large number of requests to a dead domain is just a waste of time. Let’s write a script to check for the domain we want to test.

Code:

…

Why would you want a bot for? Well, To do it all through automation. Many people even pay companies a good deal of money for this. Today you learn how to do the same thing — for free — making your own bot!

In this tutorial, you’ll learn how to build a bot with Python, to automate your Instagram activities so that you gain more followers and likes with minimal manual input. Along the way, you’ll learn about browser automation with Selenium.

Important: Make sure you check Instagram’s Terms of Use before implementing any kind of automation or scraping techniques.

…

A s time goes on, I have less time to spend online. I’m always thinking and searching for new ways to automate whatever is that I need. If you are like me, keep reading. This project may help you in gaining more free time for yourself.

Note: This can also be use for other sites, not just Amazon.

I love buying random stuff online. Being honest, I can’t remember when was the last time I went shopping at a place like a mall. …

The Death Eaters

If you are a Harry Potter fan, just like my girlfriend is, you already know who these people are. Some of you might know them by their most common name — triagers.

Triager

is the assessment of a security event to determine if there is a security incident, its priority, and the need for escalation. As it relates to potential malware incidents the purpose of triaging may vary

After a while of doing Bug Bounty, you will quickly learn to be careful when answering questions to triagers. In most cases finding a bug is not the hardest part, but getting…

A t the beginning of this pandemic, not everyone was expecting the kind of outcome it had. Too many people lost their jobs. Some even ended their love relationships because of low income, which always bring chaos into any couple. Even though I didn’t lose my job position, I was having difficulties paying my bills. For this reason, I asked my government for some help.
Unlike in the U.S, where people were getting rich off this. Some even buying Lamborghini cars. My country was only offering us 200£ to 600£, in a one-time-only offer. …

A Subdomain takeover occurs when an attacker gains control over a subdomain of a target domain.Typically, this happens when the subdomain has a canonical name (CNAME) in the Domain Name System (DNS), but no host is providing content for it. This can happen because either a virtual host hasn’t been published yet or a virtual host has been removed. An attacker can take over that subdomain by providing their own virtual host and then hosting their own content for it

Subdomain Take Over(STO)

When I started doing Bug Bounty, Subdomain take overs were the kind of vulnerabilities I avoided the most. While reading…

W e can do everything using scripts, these are fantastic problem solvers. But as in life, nothing is perfect. Whenever you run a script, you have to wait for the given task to finish. If the command is short and simple, you won’t have to wait much for the results. On the other hand, if these scripts take long, that is a problem. Most time, if you are busy doing something also, you will miss out whenever a task finishes, making you waste valuable time waiting for something that had been done for a long time already.

Intro

I want to…