Content Discovery using FFUF Content discovery in bug bounty refers to the process of identifying hidden or undiscovered web pages, files, directories, and other content that may contain vulnerabilities or potential security issues. By discovering these hidden assets, bug bounty hunters can expand their attack surface and uncover potential vulnerabilities that may have been…

Previous Part: https://aswinthambipanik07.medium.com/bug-bounty-recon-part-1-dad7f86d1b0f Subdomain Enumeration Techniques Subdomain Enumeration Using Certificate Transparency Logs Subdomain enumeration using Certificate Transparency logs involves searching the logs for publicly trusted SSL certificates associated with a domain. There are various online services and tools available that provide access to Certificate Transparency logs.

In the future world of cybersecurity, bug bounty programs have emerged as a vital tool for organizations to identify and rectify vulnerabilities in their digital infrastructure. …

What is a Memcached server? Memcached servers are used to store and retrieve data in the form of key-value pairs. When client requests for data from server, its checks for the data stored in the cache. If the data is available, it is loaded into the memory. If the data is not present, the server…

Hi Everyone, My name is Aswin Thambi Panikulangara(R0074G3N7). In this writeup, I will be sharing my technique of enumerating s3 buckets, finding misconfigurations, and recent bug i found in a public program(P1). Tools : Subfinder, Ffuf, waybackurls *.redacted.com is in scope. As usual, I started with subdomain enumeration, for subdomain…

Hi Guys, In this article, I will share how did I found reflected XSS on my target( redacted.com ) The program was an Rdp and they does not allow disclosure.As the target does not provide payments or gifts in exchange, now its time for hall of fame!!!. Most commonly i use subfinder tool + httpx to enumerate subdomains.I got a subdomain “sub.redacted.com” , visited and found a search bar. So i tried my payload : <script>alert(1)</script> to see the response.