Это видео недоступно.
Сожалеем об этом.
How to approach a target in Bug bounty programs | Bug hunting live
HTML-код
- Опубликовано: 22 мар 2024
- in this video i am going to show you how to recon a target in deep and finds bugs in bounty programs this video will help all the hunters who are new in this field and dont know how to approach a target and hunt and finds bugs..i hope youtube dont takedown this video bcz it take so much time and efforts to make this if anyone from watching youtube in review team dont restrict this video please..Thank you
Disclaimer:
Disclaimer: This video is for strictly educational and informational purpose only. I own all equipment used for this demonstration. Hacking without permission is illegal so always ensure you have proper authorization before using security tools in any network environment. thanks.
Never seen anyone making videos on real world bug bounty. This is underrated....
Brother should definitely make a course. From beginning to master
i will upload all brother 🤗😇
It will be more worthfull
@@lostsecc can you plz do a curse about bug bounty and it doesn't have to be long video it could be short if you want to, and thx for show us for work
Never seen anything like this, even in paid courses. God bless you, bro. Keep it up!
my pleasure brother ☺️😇❤️
for more update join telegram t.me/lostsec
Dude, your content is seriously underrated! Definitely learned a bunch just from this one video, some of the stuff you did is still a bit new and complicated for me, but still really good stuff! Thank you!
thnq so much its means lots for me brother ❤️😇 i want to also upload deep but due to yt policy its not allowed so i will post in my telegram channel t.me/lostsec
To all viewrs u will find u first bug after watching this video ameen🎉🎉🎉
Ameen
Same to you bro🎉
sure
Ameen bro
Amen 🎉
I think this might be THE BEST "how to approach a bug bounty program" video on the internet. I'm serious...and Thank you...your videos are priceless and have helped me and thousands of other people. I think you might be the real Mr. Robot
😇❤️ pleasure to hear this joi my telegram for more t.me/lostsec hope you like it
THANK YOU. I think with your video I found my first bug which was rewarded.
my pleasure bro 😍🥰 keep going.. 🔥
How much bounty was given? What type of vulnerability was it?
This video deserves a lot of credit! Really appreciate your efforts
nicee to hear this brother ❤️😇
thanks man i love your content
people are looking for this type of content only
❤️😇
We are with you brothha we'll support you ;)) keep providing content like this since no one in yt makes real life bug bounty vids
thnq brother its my pleasure to hear this 🥰😇❤️
A real definition ,"of talk less do more",thanks for sharing this educational and informative video og💪
my pleasure brother 😇❤️
searched for a content creator like you finallyyyyy ur videos are fire !!!
my pleasure to hear this 😇❤️
Lostsec you're a true hero in the space of bug bounties. Thank you so much!
my pleasure brother ❤️🤗
Only some people know that this is what real recon and approaching looks like. nice stuff
there are more thing to add but bcz of video length i did not make it long but i will make another video of this part..
@@lostsecc Looking forward to it brother. Keep going.
I love the content. This should be a much bigger channel
my pleasure ❤️😇
My man what you do is extremely valuable for people like me really trying to understand the concept please do not ever stop recording these big respect brother 🙏🙏
sure bro its my pleasure ☺️😇❤️
great content never saw someone using these basic tools to its full potential before
❤️😇
i am your daily follower, please can you send all command you use to hunt basics or advance - don't need to worry so much! if you have time please Help us out
-Thanks, Your big fan in the Bangladesh!
yeah it will be very helpful for US!
after all thank you coffinxp you are just great!
sure i uploaded all in my telegram and upload more soon..join it..
@@lostsecc thanks it will be very helpful... ok I already joined... but I can't find the date when you upload... ok I am finding if you say so that you uploaded
-Thanks for you time
I would be interested when you upload a full unprepared bug hunting session over several ours. I think you can learn a lot of valueable things from seeing someone else tries/fails and think process. You don't event need to find a vulnerability at the end.
sure
You are a true legend brother! God bless you
thnq brother ☺️❤️
I don't think RUclips is as restrictive about hacking as it used to be👍Thanks for helping everyone out! Keep it up!
❤️
Hello Brother, this is the better approach i have got till now, it was really interesting and very insightful, Love from Karnataka, India. Keep on posting this type of content in sequential manner. Will be waiting to learn what is next in your next video. Thank you brother.
next video will going more amzing.🔥❤️
@@lostsecc Hey bro how do u make the wsl theme
This is simple AWESOME! Seriously, you've just did one of the best classes of bug bounty from the internet. REAL HACKING.
❤️😇 join telegram channel for more t.me/lostsec
Brother tbh i wanted this, I'm a complete beginner in this i was waiting for this kinda content from you. 🙌🏼
Please post more like this ❤
sure brother ❤️😇
big fan brother please add a 0 to hero course in bug hunting
sure join my telegram @lostsec
I have a question: does this group of URLs constitute a single vulnerability that can be reported, or a set of vulnerabilities?🤔
set of vulnerability including all
Exactly what was needed from the usual scamming crap from so called top tier influencers and free love to see a full edition from start to finish with all the pitfalls you encountered
❤️
ما شاء الله وضعت يدي على خدي واكملت الفيديو
Admirable work, man!!!😍
could you please tell us which terminal do you use?
kali wsl ❤️
You don't know how much help this video brings to us. Congratulations! you're channel is growing, well deserved.
Edit: I hope you could put small caption on your video on what you're trying to point, or trying to achieve for a better understanding. It's a little bit confusing if it's just swaying the mouse or highlighting. But, props to you my guy you're a huge help already.
my pleasure dear 😇❤️
and you can join my telegram there i will explain all what i do ❤️ t.me/lostsec
and here iam pressing the follow button because i have learned new things tbh
☺️😇
Amazing shit bro, i was trying to find a simple and efficient methodology for doing some bounties. Will try something similar in my targets. Thanks for sharing!
❤️
This dude is a menace i repeat this dude is a menace 💀be protected everyone.....
💀🌝👻
Finally after this video I know what to do
❤️
Great video
Can you please also make video on subdomain gathering stage for Program that has 'All assets are in scope'
Like Asn,. Ip ranges, acquisitions etc and from them collection apex n subdomains
sure comming...join telegram for more update @lostsec
@@lostsecc Thank you
Excited
Best content creator in hacking videos thank you brother for everything you doing for us
my pleasure brother 😇❤️
Learnt alot from this. Keep up
my pleasure brother ❤️
GREAT JOB AND LESSON ! Thank you for all. can i ask you where can i find Costum-Nuclei-Templates?
i upload soon in my github
Bro, that's cool, one secret tip, for readers... a lot of us skip domains that don't resolve that is a very serious mistake, you can run wayback or gau on that and you will find a lot of resolving links. CHEERS
yes 😉
Thanks a lot sir please post more content on recon I'm very excited 😁
sure ❤️
Hey really loved your videos can you upload from scratch like from what to learn and from where to start
sure
Superb video
I had to come see the part 1 again after i saw the part2. Please is the command line available here just like you did in part2?
yes i send it in my telegram channel with all explaination must check that..
subscribed !!!! thank you so much ,plz make more videos like this
surw
bro you are sick keep doing it
❤️😇🤗
thanks for making a valuable content like this. Anw want to know what's inside the custom-nuclei-templates ? Could you also share this ?
uploading soon in github again.
Wow brother this is a nice content. Need to learn more from this. Thank you for this amazing post.
my pleasure brother ❤️😇
thanks for this awesome video bro... can you list all the recon tools you used while gathering info??? will be a great help.. thanks
i shared all in telegram channel must check out
@@lostsecc okay bro thanks
Can you post a screenshot of your terminal/shell configuration
I think your terminal/shell configuration is pretty interesting and useful
its ohmyposh custom theme
GOAT is back 🫡
❤️🥰😇
@@lostsecc hey bro can you give your custom templates ? It's OK If you want to keep it secret but it will be very helpful if you give your templates 😅
Bro you are perfect. Please I'm waiting for more. Can you share us your toollist and which do you use wordlist?
sure just join telegram.i will share all
love it got right to the point
Genius man 🙏🏻😘
❤️🤗
Bro, you are cool, you are good, I admire and follow in your footsteps, thank you
❤️😇
@lostsecc Thank you for submitting this report. There are often additional mitigating factors that prevent CORS misconfigurations from being exploited. To properly verify the existence of this misconfiguration, we ask that you provide a working proof of concept, preferably
an exploit that demonstrates that CORS misconfiguration can lead to the theft of user credentials, tokens, or other information that would cause an account takeover or trigger state change actions. Thanks for your help checking this! Compliments help me
Thank you so much, really very good
❤️😇
You are great 👍❤
❤️🤗
Please continue recon methods like this video 🙏
sure
you work just with cat me copie coller omg you the top G
Thank you so much god bless
my pleasure brother ❤️😇
Great Bro, it's masterpiece video
❤️
you got a sub! Really great content!!!!
my pleasure ☺️😇
Awesome video💌💌💌never seen before. thanks a lot.
❤️😇
Mano voce é foda voce é bom admiro e sigo teus passos obrigado
Bro why don't you take classes because want mentorship from you ❤🎉....
bro i get very less time on these stufss i do many things together..
damn bro,, thanks for this, subscribed your channel👍:)) awsome content❤
my pleasure brother ❤️☺️😇 also join telegram channel t.me/lostsec
@@lostsecc sure bro, joining right now
How do you avoid getting blocked by the firewall while fuzzing?
Amazing video as always.
i rate limit my threads to 1
Bro, amazing video. I have a question when i submit different type api key they say exploit this key or need impact. I face this type of problem what can i do now 😢
you need to check first api key is valid or not or its old then try to show the impact
I have no word to say...❤❤❤
😍🥰
bros music choice is always so good
❤️🗿
Can you please make a video on how to change wsl theme + background image
sure
How to create Custom_template? what templates are you using bro??
Need account takeover lecture ❤
sure❤️
@@lostsecc bro insta wagerah ha apka 1deal ha wo mil KY krty ha
Hey great person do you have a course or something? Or is there a way that you can give out how you learned your sources or stuff? You are amazing and to be real with you, you are doing things I havent seen in any bug bounty courses.
dm me in telegram i will send u bro ❤️
Thanks brother. I think we need more videos like this. I have subscribed your channel. Can you please make more advance videos like advance google dorking for bug hunting to find more information about a web app. And Censyn and advances shodan usage with dorking to find Information.
Also We need some content like We can find bugs or vulnerability while we are doing Recon. I mean make the recon process such before completing recon we can found the bugs. Not All times possible but we need every kind of advance recon techniques. And again thank you.
yes sure comming all..
Nice step doing this and sharing with us, a quick question: What is your machine specs? because with that huge amount of URLS to run against those hugs nuclei template simply kill the process.
use wsl2 kali its light weight and fast..
@@lostsecc will that work? For the urls to be inmillions?
yes..also depend on your cpu gpu
@@lostsecc Got it, also do share the custom nuclei templates resource as there are many and usually counted over 30+ templates.
Newbie here, could you please list all the recon tools you used in this video?
check out my tg channel i shared all there..
@@lostsecc Thanks, will do
nice thankyou brother !!!!
Bro never stop posting videos ❤❤
sure brother 🤗
what theme are you using in the windows terminal?
ohmyposh
Bro try to explain by each step from now on soo it's easy to understand whats with the tool
alrady shared step by step in telegram channel must check it will help u ..
what was the purpose of doing dirsearch, after u got it done u didnt do anything beyond with it. Can u tell me why?
i show the approach otherwise if i do that it takes so much time
really good. thanks a lot
hey also can you make your website for these vedios! i am scared in future i will not be able to see and learn from these because of yt guidlines
these are public programs for hunting..and i hide all senstives parts 🤗 and dont worry i will post all material in my telegram just join it @lostsec
ok sirr@@lostsecc
Thank you so much, really a great video explaining things in details.
But i don't understand something, are there so many vulnerabilities that you found at 16:10, can you report all of them as vulnerabilities, i don't understand.
Thank you
manually check all then report many have false postive issue so..
@@lostsecc thank you so much for replying
This is amazing bro but how did you carry out the last part. some of the parts are censored.
some censorpart are grep command
What are you using to find subdomains
subfinder with api keys
Bhai aapne jo dirsearch me wordlist use kiya hai wah kaha se milega
check my github repo
There are codes that you have written yourself, can you share them with txts or something?
alrady share in my telegram t.me/lostsec ❤️
Thanks man
❤️
good video btw where can i find the nuclei template?
i shared in my telegram @lostsec
@@lostsecc i cant cause i dont have an account, do u have a discord or smth like that?
i.will make soon and for templates old templates not work now nuclei upgraded with --dast so try that ..
Great Content 🎉
Ye banda ultimate hai hats off 💯 pure contents
my pleasure bro 😇❤️
Yayy you uploaded a vid
😍😇
Hey brother can you give your custom nuclei template?
Brother thank you for video. Can your help us to manual hunting like this video. Thanks
sure join my telegram t.me/lostsec
hey lost, what terminal you use on windows? im done with kali linux always crashing, i might do bug bounty on windows, thanks bro
its wsl2 kali
Bro, i can understand everything but how you get gau command in linux please explain.
first install golang sudo apt install golang the install gau
Yes, I have done it. But it's showing zsh permission denied. How can I solve it ? I have watched RUclips but couldn't find it.
❤thanks so much for the vid, also what are the commands you use after 10 minute mark since they’re blurred out
thats just cat and grep command to grep keys
@@lostsecc oh ok, is the yaml file on ur GitHub the nuclei template you used ?
which one
which one
which one
My bro you are best
😍🥰🤗
Where can I find the templates I used with the nuclei tool?
in my github repo t.me/lostsec
@@lostsecc thanks bro