Это видео недоступно.
Сожалеем об этом.
Latest Check point:CVE-2024-24919 | Bug bounty poc
HTML-код
- Опубликовано: 1 июн 2024
- Disclaimer:
This video is for strictly educational and informational purpose only.I own all equipment used for this demonstration and is not intended to be used for malicious purposes.Hacking without permission is illegal so always ensure you have proper authorization from the system or network owners before using security tools or attempting to exploit vulnerabilities.
telegram channel:
t.me/lostsec
Already joined
Hello. What I want to ask is how do you keep track of these vulnerabilities and exploits?
keep notes..
brothers remember to use proxychains ahead of every command when connecting or exploiting servers in the wild, don't expose your IP
yeahh ❤️
Are you by any change sharing the priv8 nuclei templates :P
sure upload soon in github
First my brother❤
🙈❤️
I'am new to this ( still learning kali wsl ) maybe idk what ur doing but this is impressive
u will understand all ❤️
Love your contents ❤
Perhaps one day you'll show us steps to report these bugs
sure ❤️
Too late, we are now too late😢
😕sorry i was just testing something..and experimenting..
Not too late bro triying find more target on other searching engine
@@P3ntest3r*meanwhile the people who did mass (literally MASS) hunting 2 days earlier* 👀💀
bro's channel is bigger day by day❤
❤️🤗
Osm bro keep it
just found your channel
love it
my pleasure brother ❤️🤗☺️
@@lostsecc do some rce's too
sure
bro whats the javascript that u written in the console to scrap all shodan ips
i will share but if i share shodan will patch that quick..
U only use command prompt on windows or do you use other stuff normally? Thanks for the video 🐐
i use wsl2 kali 🤗
How can you identify that the ip belongs to bug bounty program
use hakip2host script
brother whenever i try to install kali wsl2 then i always get stuck in.the upgrade process i always get an message saying "nothing to restart" and then.the upgrade gets stuck there
make sure your all window features are on watch techchip video on wsl2
Bro you're ao good at what you are doeing whag dont you do some conference?
when my all setup ready i will do..
What's the bug that you spent like a lot of time on it but you didn't succeed on it and it was really hard but finally you figure it out ?and you feel very happy 😁 and how much time it took you and Wich type
hey, what is the name of the song in this video?
Brother how did shodan output 100 different ips, did u buy api or crack it?
yes my friend give ne shodan acc
GOAT is back again 🔥💪
Can you give commands used in video ?
sure sharing in telegram soon..
@@lostsecc ok bro 🔥
are you use shodan Freelancer or Small Business ?
shodan student acc
can u make totorial about tor and proxychains ?
nice content
sure
@@lostsecc tysm ❤
❤ thanks
Bro please voiceover bhi kiya karo
How you made WSL predict what you will type I know its from history, but this doesnt work on my kali wsl terminal. Is there some extension or? And your commands have a color like a cat have blue color, in my terminal i have only white font for commands. Thanks in advanced
you need to install some packages like auto syntax highligher auto suggestion..
bro your content is greta but please speak in your videos and explain each step for us(noobs)
i shared written in telegram
@@lostsecc i'll check it out
how do you take bounty/payments if the target doesn't have any bug bounty programs
send report to there email use hunter io extension and extract all emails and then report it..
Hey bro, how do you start learning this? I'm a beginner and enthusiasm for cyber security but htb and thm platform look intimidating to me. Please help!
start from portswigger lab
where does that template nuclei come from?
i will upload soon in my github
Bro Can you give us roadmap for penetration Testing for beginners 😊
sure join my tg i share all methodology ❤️
If Shodan CLI shows an error like this, what happens?
Error: Access denied (403 Forbidden)
Do you have to subscribe to get the shodan API?
+1 I think it requires a subscription
Thanks for valuable content
🤗❤️
How can I select a target that is in scope I didn't intend after all who are you doing this recognition
select wide scope targets..that has huge domains and subdomains..
@lostsecc thank you for answering me I really admire your work thank you for helping the community thank you a hug from a big fan
How is this movie you made going to help us when you are doing it with a Private Template?
If you want to really help us, upload it so that we can download it.
dont worry i will upload it ❤️
Do you have some playlist you listen while you study/hack?
yes sometimes :) i shared in my telegram must check ❤️
@@lostsecc Will see it, thanks
bro, please tutorial fast scanning use nuclei🙏
sure
Bro can u tell me your device spes
will show all soon..
if u dont mind can u share ur nuclei templates ??
dm me in telegram
@@lostsecc well tysm , i do :)
Bro how did you know if this ips have a bug bounty program??
use hak2ip and check its org name
Day 1 of commenting teach me the ways sensei until you take me as your student
TEACH ME THE WAYS SENSEI
surw
@@lostsecc well that was quick. Can i get contact information?
t.me/lostsec
How do you find these bugs in multiple targets? i mean there are many orgs , how it can be done ?
just dump all ips and filter it with org name by hak2ip tool
Where can i find this cve template for nuclei
i shared in my telegram
I have a question about this vulnerability. Is this due to a particular technology used the in web?
yes ssl vpn check point
@@lostsecc I can find it through wappalyzer
@@lostsecc how can i write report for this vulnerability
i am sending soon report format in tg channel
I found one end point with this issue. But the endpoint redirected?
not vulnerable maybe or its popup ? screen
what's the name of extension use for domain
link gopher
muito bom tô assistindo aqui do Brasil🇧🇷🇧🇷🇧🇷🇧🇷🇧🇷🇧🇷
❤️😇
hey, can you help me? i'm a windows user. which terminal you used in windows ? and how to setup it, please tell me details.
its window terminal u can download it from microsoft store then download wsl2 kali
@@lostsecc Thank you boss
bro, how we understaned that which comapy or domain's ip it is?? let me please
watch last part i show the ip to domain name
what is the extension u used to grab shodan links
link gopher
my brooo thx for this video
❤️🤗
so those outputs were password hashes?
ys
Day 8 asking when you launching your own sqli injection tool
there are some feature that i want to impliment after that i will upload just busy in latest cve reports and all stufss..
Thanks
Thanks bhai❤❤❤❤
❤️🤗
Bro can u make a video on your setup
surw
You da Man bro
🤗
i love your vids bro very helping me to learn more about cyber security, can you name all your mozilla extensions? keep it up :D
my pleasure brother ❤️ yeah i shared all extensiin in telegram channel must check:t.me/lostsec/405
@@lostsecc thank you bro i just check it ❤
Which OS and the Wsl
wsl2 kali
What the extantion name for copy all ip and domain from shodan .... And thx for this containt ❤
link gopher
bro where you learnt all the staff can you share resources
i shared all resources in my telegram must join it.
how can find this cve targer site
use shodan dork
@@lostsecc give this shodan dork...plz..
Hello..sir..plz give me you blind-sqli inject chack python code..😊 or script
soon..
Does it requires shodan premium?
yes
Nice finding
🤗
tks brother 😍
❤️🤗
Thanks Bruv
❤️🤗
Keep going 😈
🤗❤️
First comment
🙈❤️
thanks brother
❤️🤗
Burp suite pro versión its good for bug bounty?
yes
@@lostsecc i can use Just burp suite pro?
For bug bounty, or i need more tools?
you need all tools but most are avaible in burpsuite..
@@lostsecc thanks for answering, with burp suite scanner i can find algo of vulnbs, its ver y good, and btw, What i need to learn to start bug bounty?
your part of the anonymous
🌝
nice
❤️
What's the name of the song xD ?
dark beach
Bro skill requirements to start bug Bounty
just need passion and adeptive skills to adept all skills fast its not matter which domain are you from..but for basic skills you need to learn some networking,linux,little programming..
Where can I learn it please help me bro
I will surpass you
❤️
Good video
thanks brother ❤️
@@lostsecc /use/admin/.ssh/id_rsa may be possible to fir the pgp keys , also helpful to connect ssh, try it
how to login ?
u need to crack hash
broooo 🔥❤
❤️🤗
Bro do you got bounty for that 😢
i did not reported :)
@@lostsecc what's the reason?? Reporting this type of vurnebility is beneficial💰 for me or not 🚫
sure but report on bug bounty programs..
❤🔥❤🔥❤🔥❤🔥❤🔥❤🔥
❤️🤗
Does this vulnerability occurs in all the website?
not all but 35k result in shodan that is effected to this..
@@lostsecc then this vulnerability is dead ? And no longer will exist?
bro i said 35k host is there in shodan and most of them are effective
@@lostsecc what is I need to find this CVE in specific website? How do I find it
bro i clearly show in video how to find..just put that dork and do that i did..
Bro can you do a video of how do you do your last post on tele about how to find SQL injection please🫶🏼
sure
@@lostsecc thanks man you are really inspiring to me I hope one day I can get nearly as good as you
If Shodan CLI shows an error like this, what happens?
Error: Access denied (403 Forbidden)
Do you have to subscribe to get the shodan API?
yes u need premium subacription or use edu domain
@@lostsecc Is there a way to use edu domain, while I don't have an edu account.
hey, what is the name of the song in this video?
dark beach
@@lostsecc thanks