$9060 OS Command Injection POC | Private Bug Bounty Program 2023 | P1 Insecure OS Firmware

Abhishek Morla

Просмотров 19 тыс.

Добавить в
- Мой плейлист
- Посмотреть позже
Поделиться

HTML-код

Размер видео:

Показать панель управления

Автовоспроизведение

Автоповтор

Опубликовано: 1 авг 2024
$9060 OS Command Injection POC | Private Bug Bounty Program 2023 | P1 Insecure OS/Firmware
-----------------------------------------------------------------------
Twitter: / abhishekmorla
Website: abhishekmorla.netlify.app/
Linkedin: / abhishekmorla
------------------------------------------------------------------------
Embark on an exhilarating journey into the world of cybersecurity and ethical hacking as we explore a real-world Unauthenticated Remote Code Execution Exploit that led to a $9060 bug bounty reward. This Proof of Concept (PoC) demonstration unveils the steps behind this successful hack, showcasing how vulnerabilities can result in reverse shell. Stay tuned for an insightful exploration of cybersecurity and ethical hacking in 2023!
------------------------------------------------------------------------
Path:
/cgi-bin/jarrewrite.sh
Shodan Query:
shodan search --fields ip_str,port http.favicon.hash:-2012355198

Комментарии • 91

@KetanIndori 9 месяцев назад ⁺¹
Thanks so much buddy 🔥🔥
@Ab415h3k 9 месяцев назад
Really very useful
@SecretLetters 7 месяцев назад ⁺¹
nice video mate 😎
@hainguyen-ed9mz 9 месяцев назад ⁺¹
very good
@saranvishva7982 Месяц назад
Awesome dude 👌👌
@codermomo1792 2 дня назад
Weird to see shelshock in the wield
@user-of9qp9ce4g 9 месяцев назад ⁺¹
🎉🎉🎉🎉❤❤
@Indic4Zone 17 дней назад
cool
@itsthegamerPOV 9 месяцев назад
Wow
@tokyorockstarVALORANT 4 месяца назад
hello abhishek, do u use vulnerbility scanner to find a vulnerable parameter or do you manually test each one
@abhishekmorla1 4 месяца назад ⁺¹
Manual
@Free.Education786 Месяц назад ⁺¹
बहुत बढ़िया वीडियो भाई। SQL इंजेक्शन, XSS, LFI, RFI, RCE, OS कमांड इंजेक्शन, CSTI, और SSTI वेब एप्लिकेशन कमजोरियों के लिए एंडपॉइंट और छिपे हुए पैरामीटर कैसे खोजें? धन्यवाद
@abhishekmorla1 Месяц назад ⁺¹
Join The Channel
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@hereallweek 2 месяца назад
insane
@tech_N2999 9 месяцев назад ⁺²
Do you use a vpn or tor to add a little bit of security and privacy
@abhishekmorla1 9 месяцев назад ⁺¹
Yup..thanks for understanding
@pittsec 3 месяца назад
Hi brother, did you use some wordlist to fuzz and get that weird .sh file? And how did you guess and test for that particular attack?
@abhishekmorla1 3 месяца назад
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@user-rw5zp2tl5l 9 месяцев назад ⁺²
Very cool. I watched the video but I still don’t understand. Can you tell me your steps? Steps after subdomain search
@abhishekmorla1 9 месяцев назад ⁺⁴
you need to find exploits of services which are running on your target. in this case it was "sonicwall ssl-vpn web server"
@user-rw5zp2tl5l 9 месяцев назад ⁺¹
@@abhishekmorla1
Thank you
@Free.Education786 Месяц назад ⁺¹
Excellent Video Brother. How to discover endpoints and hidden parameters for SQL Injection, XSS, LFI, RFI, RCE, OS Command Injection, CSTI, and SSTI web application vulnerabilities? Thanks
@abhishekmorla1 Месяц назад ⁺¹
using javascript files
@Free.Education786 Месяц назад ⁺¹
@@abhishekmorla1 Thanks B0$$ ✔️✅️🫡🔥💉❤️ Hope 2 C here on your channel soon. 💪✅️🫡🔥💉❤️💐
@user-hb2rl4zn2m 9 месяцев назад ⁺⁴
can you explain how you approach the target and how you get to know that there is os injection
@abhishekmorla1 9 месяцев назад ⁺⁹
if you reverse search the payload i used , you will find the answer. and for approaching targets i use shodan
@frankdSda 7 месяцев назад
@@abhishekmorla1 but how you found that youer target has a bug bounty program ?
@codermomo1792 2 дня назад
@@frankdSda
There are websites for this
@---we8bx 9 месяцев назад ⁺¹
I just stumbled on your channel, what is the name of the that httpclient your using?
@15494063y 9 месяцев назад
It is ngrok
@prudhvikonakalla9605 9 месяцев назад ⁺¹
Nice bro.
Please make large videos on other content deeply
@abhishekmorla1 9 месяцев назад ⁺²
Sure 👍
@AyushKumar-rg1uk 2 месяца назад
just wanna ask one thing did you use some publicly available cve? to exploit it like if it was running a vulnerable version of sonic firewall. pls reply..
@abhishekmorla1 2 месяца назад
Yes
@AyushKumar-rg1uk 2 месяца назад
@@abhishekmorla1 thanks appreciate it
@BruceWayne-zw3dt 2 месяца назад
How do you figure out where to test for shellshock?
@abhishekmorla1 2 месяца назад
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@Mustafa-wq6ew 6 месяцев назад
Hi, how did you prepared your payload?
@abhishekmorla1 3 месяца назад
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@DevPoint. 7 месяцев назад
I like Dr FarFar also😂 , thank you for sharing 🙏
@DevPoint. 7 месяцев назад ⁺²
I just wrote a nuclei template to find this vulnerability , i found one , reported and waiting for review 😄
@Hackerone1444 5 месяцев назад
@@DevPoint.any updates bro do you get any bounty
@AyushKumar-rg1uk 2 месяца назад
@@DevPoint. brother can you explain me more about this bug like if it's because of using a vulnerable version of sonic firewall and is it a publicly available cve ??
@phgodoycosta5956 9 месяцев назад ⁺²
Shellshock 😄
@vivekkhandagre9274 9 месяцев назад ⁺¹
bro aap ye sab kaha se sikh te ho please tell me
@abhishekmorla1 9 месяцев назад ⁺¹
portswigger , htb
@zajben-hk2fh Месяц назад
Can anyone explain why did he put the parentheses before the payload
@abhishekmorla1 Месяц назад
delimiter
@zajben-hk2fh Месяц назад
@@abhishekmorla1 explain more
@abhishekmorla1 Месяц назад ⁺¹
@@zajben-hk2fh Join The Channel
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@abhishekmorla1 Месяц назад ⁺¹
@@zajben-hk2fh Join The Channel
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@zedvn3792 Месяц назад
Are you exploiting it based on a previously published CVE?
@abhishekmorla1 Месяц назад
yes
@adhikara13 6 месяцев назад ⁺¹
What bug bounty program is this?
@abhishekmorla1 6 месяцев назад
private
@mubit5774 7 месяцев назад
use it just for 500 statut
@cksuwarnaraj 9 месяцев назад
Please suggest me some resources where I could lear rce
@abhishekmorla1 9 месяцев назад ⁺¹
Play ctfs on htb
@bountyvitcim 9 месяцев назад ⁺²
first response 500?
@abhishekmorla1 9 месяцев назад ⁺¹
Yup
@bountyvitcim 9 месяцев назад ⁺¹
after that 403😢
@lmfao69420 9 месяцев назад ⁺¹
are you "shocked" you got a "shell"? 😏
@abhishekmorla1 9 месяцев назад
naah
@lmfao69420 9 месяцев назад
@@abhishekmorla1 shellshock
@user-pe1og1vs5x 6 месяцев назад
can you please share payload ?
@abhishekmorla1 6 месяцев назад
On discord
@nguyetnam1328 9 месяцев назад ⁺³
What's cve sir
@abhishekmorla1 9 месяцев назад ⁺¹
www.exploit-db.com/exploits/49499
@abhishekmorla1 9 месяцев назад
www.exploit-db.com/exploits/49499
@shahbozbekahmadjonov1408 9 месяцев назад
but this website isnot internet
@shahbozbekahmadjonov1408 9 месяцев назад
doesnot exist
@abhishekmorla1 9 месяцев назад
Yeah it requires vpn
@tntxqx8281 3 месяца назад
How still be shell shock vulnerability in today's world
@abhishekmorla1 3 месяца назад
join the channel ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
@kalendra.ethicalhacker 6 месяцев назад
is it solved
@abhishekmorla1 6 месяцев назад
Yes
@prudhvikonakalla9605 9 месяцев назад
Bro,Are you telugu?
@abhishekmorla1 9 месяцев назад
no bro..but everyone says the same lol
@paktiko1986 4 месяца назад ⁺¹
shellshock
@KetanIndori 9 месяцев назад
I need all payload 😅
@abhishekmorla1 9 месяцев назад
Sure

Следующие

Автовоспроизведение

$1500 bounty : authentication bypass + unauthenticated configurations access | POC | Bug Bounty 2024