Dude this guy is actually so helpful. I don’t do pentesting, I work in helping antivirus detect malware, etc. but this is just so cool. Also, we both have a hacking setup with GTA V lmao 😂😂
With proper Internet you get lots of positive results, but with lacking internet you get lots of false positive, I can't wait for exploatations, great tool bro, one of the best 💯😎 shout out to Lostsec 🎉🎉🏆
I am using your blindsql tool. This tool is really great but I have seen that for few of the targets, it shows that domain is vulnerable but when I check manualy, its actually blocked by cloudflare WAF. How can I proceed?
@@lostsecc Hey, can you share it again plz how to bypass waf?.. And when I copy website to browse is blocked. May is there old data from waybackurl ? So may be url removed so we can't access...? Actually I got lot of SQL found when I open almost all blocked?.. How we can change url is valid or old version?
First of all, great video! I have a question: If I find a vulnerable SQL injection URL using a tool but it is blocked by a CDN or Cloudflare, how can I bypass that?
Honestly, I love your content. I dont know if it is zsh you're using but I love your terminal look, kindly make a tutorial video on how to replicate it. Thank you. Please, great work bro.
I love this , but im afraid someone’s reports or something , you make every video legit I love you man.. please update if something gets detected etc ❤❤
You are an inspiration ❤. Idk if you know me. But I am pretty active on x. Group chat I remember your reply once about the data leak that I found.. you really have an out of the box perspective. That's what inspires me 🙌
Thanks for all the amazing videos that you have been making, thanks for the tools that you have shared for free I appreciate it. I don't mean to be selfish but I just want to remind you about the WAF bypass you said you will share
@lostsecc Hey, can you share it again plz how to bypass waf?.. And when I copy website to browse is blocked. May be is there old data from waybackurl ? So may be url removed so we can't access...? Actually I got lot of SQL found when I open almost all blocked?.. How we can change url is valid or old version?
Hello Brother, I have been following you on youtube since long time, could you help me with the XSS automation?? i know the tools but couldn't figure out how to find it. Could you send me the steps to find it?? It would be great if you help me, Thank you
bro i never report sqli.is company allowed to use tools for poc like SQL map or ghauri because i see on bug hunting programs like automated tools output not allowed any experience? please share. I learned a lot from you and i got my first bounty of 200$ because of you.
@@lostsecc thank God, because I stucked on xss matrix so only , And I recently noticed in that field you should be careful to bypass it , because you try all xss in this it's won't work without initial this payload
Hello lostsec, Today you said you want to hack Bangladesh Navy website. I'll request you not to do it. I'm from Bangladesh. If you want you should go for Bangladesh police Site. They killed lots of students today more than 200 hundreds just today.
@@lostsecc Thank you brother. We are passing a critical situation. Only Allah can help us. We feel like Palestinian. Pray for our student brother. Our Bangladeshi hacker group are hacking govt. site to let them realise that govt should stop genocide.
in 0.57 Sir you missed this :( for begginers its tough cat url.txt | grep FUZZ | gf xss | grep -iavE 'pdf|txt|\?l=FUZZ$|\?contry=FUZZ$|\?q=FUZZ$|is/image' > out_fuzz.txt
play at 1.25x speed ❤ for tool dm me in telegram channel t.me/lostsec
how can we access the tool?
i shared in telegram
@@egg144p yes
@@lostsecccan you share lostsec.jar again pls ?
No way to DM boss and I wanna talk to you
the only yt channel where there is no clickbait content on bug bounty. straight to point .
🤗😇❤️
Plss share the tools ✨✨😌
gotroot is also vg
Real.!
Yes 🎉
I more of a web pen tester , but i still come here every now and then and i do agree that this channel is awesome.
❤️😇🤗
Dude this guy is actually so helpful. I don’t do pentesting, I work in helping antivirus detect malware, etc. but this is just so cool. Also, we both have a hacking setup with GTA V lmao 😂😂
🤭🙈
Bro keep doing it we are with you always 💯 ❤.
Dont worry of haters we will see them 💪❤️
❤️🤗😇love u
@@lostsecc love u too brother 🫂
With proper Internet you get lots of positive results, but with lacking internet you get lots of false positive, I can't wait for exploatations, great tool bro, one of the best 💯😎 shout out to Lostsec 🎉🎉🏆
🙈❤️
I am using your blindsql tool. This tool is really great but I have seen that for few of the targets, it shows that domain is vulnerable but when I check manualy, its actually blocked by cloudflare WAF. How can I proceed?
you need to bypass waf i shared the extensions and methodlogy to bypass
@@lostsecc where? In telegram channel?
@@lostsecc Hey, can you share it again plz how to bypass waf?..
And when I copy website to browse is blocked. May is there old data from waybackurl ? So may be url removed so we can't access...?
Actually I got lot of SQL found when I open almost all blocked?..
How we can change url is valid or old version?
First of all, great video! I have a question: If I find a vulnerable SQL injection URL using a tool but it is blocked by a CDN or Cloudflare, how can I bypass that?
you need to try some tampers and use proxychains
Great video I would say without a doubt u r the best when it comes to teaching things!
❤️🫂
Honestly, I love your content.
I dont know if it is zsh you're using but I love your terminal look, kindly make a tutorial video on how to replicate it. Thank you.
Please, great work bro.
sure ❤️
Your video quality and content quality both are amazing!
❤️🤗
I love this , but im afraid someone’s reports or something , you make every video legit I love you man.. please update if something gets detected etc ❤❤
sure ❤️
You are an inspiration ❤. Idk if you know me. But I am pretty active on x. Group chat I remember your reply once about the data leak that I found.. you really have an out of the box perspective. That's what inspires me 🙌
my pleasure brother happy to see this ❤️😇
what is NS takeover please shortly explain it sir😓
Bro , what is the difference between paramdpider and katana ???
Tow for parameters ,is't it?
paramspider is passive crawler and katana is active & passive both
@@lostsecc thanks
cool tool. did you test it on BBP programs? most of payloads blocked by WAF or sanitization on BBP programs.
no i added benchmark payload also that bypass waf
hey bro your level of craft with web application hacking is pretty good. Most of the time, where do you hear about the tools you use?
self explore all
bro you said you wanna make our own forum, have you got the name of the forum? what is that
soon
bro when terminal customisation video?
luv u
soon..
@@lostsecc bro fast bro iam waiting
@@lostsecc are you just doing this in the CMD terminal?
You are a gem . Make more videos like this and take love❤🔥
❤️🤗
Thanks for all the amazing videos that you have been making, thanks for the tools that you have shared for free I appreciate it. I don't mean to be selfish but I just want to remind you about the WAF bypass you said you will share
sure ❤️
@@lostsecc OK thanks, I'll be waiting
how we want ur terminal custommisaation video so far 1 month iam asking u to put the video ur not taking any steps to put ... bro want happend to u ?
@lostsecc Hey, can you share it again plz how to bypass waf?..
And when I copy website to browse is blocked. May be is there old data from waybackurl ? So may be url removed so we can't access...?
Actually I got lot of SQL found when I open almost all blocked?..
How we can change url is valid or old version?
first run all links through httpx and then try
@@lostsecc ok can I dm you?..
What distro are you using, friend?
kali
Bro in real life hunt on real target and find sqli with this tool because then we got real feedback.....🎉❤
its all real site bro
@@lostsecc I mean to say bbp
bro your music taste are just like me 🤣
🙈❤️
Bro always hits target and make it look simple
❤️👻
Gonna add this tool on my project list and i will say to the company that i made this custom tool for sqli vulnerability finding 😂😊❤
🤭😂
Hey brother❤❤❤
How much time have you spend on for making this tool.
very less time but will add some more things to make this tool effective
Hello Brother,
I have been following you on youtube since long time, could you help me with the XSS automation?? i know the tools but couldn't figure out how to find it.
Could you send me the steps to find it?? It would be great if you help me, Thank you
i am planing to make video on this.
Well the question is who gives u the permission to test these web applications?
Joe Biden
@@lostsecc ohh really damn you are impressive!!!!!
BRo first comment
when would your github return??
maybe soon or i will make new ❤️
Sir, how to get your Bsqli tool?
soon upload..
@@lostsecc can you share your GitHub profile??
Bro make a video about manul & automation + wafbypass Sqli methods
yws
I love this channel staying up to date
❤️🤗
Can you upload your tool on other site so i can download it
sure just little change and upload in new github acc
How can i contact to you?
telegram
bro copyright ki problem nahi hoti backgroud music se
bro how to make poc like can i record sqlmap or ghuri poc to reporting like SQL map find db
no just show them command and db screenshot
bro i never report sqli.is company allowed to use tools for poc like SQL map or ghauri because i see on bug hunting programs like automated tools output not allowed any experience? please share. I learned a lot from you and i got my first bounty of 200$ because of you.
sir when you upload for xss i am eagrly waiting for that
soon
@@lostsecc thank God, because I stucked on xss matrix so only ,
And I recently noticed in that field you should be careful to bypass it , because you try all xss in this it's won't work without initial this payload
ruclips.net/user/shorts2KJ5wJfpqn4
Refer This short it only 30 sec
About textarea.
noop qesution how are u using kali terminal like this on windows I want to do the same set up I'm sick of vmware
install wsl2 and window terminal & kali from microsoft store
@@lostsecc you're best thank you so much
can you share resources how code like you no one can understand my code
Hi bro, your terminal bg is awesome could you share it ?
install wsl kali and ohmyposh themes
@@lostsecc I meant background image in your terminal, it's so good
dm me in telegram
Hey bro how do you find such .php based applications bug bounties ?
just use that oneliner that i showed in video
@@lostsecc Thanks, but most of the new BB comes with cloudfare protection isn't it ?
nice shot bro but with custom tamplet nuclei u can do the same
no that give false postive due to fast threads
@@lostsecc But your tool gives a lot of false positives too. Sometiems it says "Response time 10 seconds" then when you check, it loads instantly...
What is your type of device?
what
@@lostsecc brand laptop or computer
Bro can you suggest me bbp for idor and bac
pinterst
@@lostsecc don't you think there is too much competition ?
Yo, bro. I Like your video's most
🙈❤️
Apna bhai on top ❤
❤️
You post million dollar content!!
❤️😇
Love your content bro !! Keep it up !!!
❤️🤗
man ur BSQLI github not found :(
i shared in telegram
very helpful, thank you
kindly share the tool and thanks in advance
i shared in telegram channel link in pin comment
bro make a video on recon strategy
sure
how to get the tool?please
i will share in telegram soon after some update
@@lostsecc thanks❤
good job buddy love to see the work
❤️
Your github channel gives a 404 error.
someone reported
@@lostsecc LAME!
my bro did it again ❤
❤️🤗
How to exploit with ghauri or sqlmap❤❤
Thanks for video.
comming in telegram ❤️
@@lostsecc expected date
man ur github BSQLI not found🙃
Nice. Github link?
telegram
How to install it ?
tell me the way to install it to my computer
how do you get that cmd
wsl
i love your wallpaper XD
🙈❤️
Where is your tool
telegram
And sad bro your github got ban because of mass report..
no problem bro i will not stop ❤️
great video, my brother.
❤️
Tool Github link ??
telegram
bro I'm still waiting
Queria eu ter esse conhecimento 😔
thank you brother
❤️
Video successfully downloaded ❤
❤️😇
Nice video keep it up😍
❤️🤗
tool downlod link
i send in telegram
But bro i think your github has been mass reported :(
yes 💔
Pls create a powerful xss tool❤❤❤❤
yws
404 pls fixed it bro😢
Finally.......🎉🎉🎉
🤗❤️
Github blocked your account
check new acc
amazing tool 👏👏👏👏👏
A lot of false positives sadly
use active urls that not give redirect
What is your id on MC5?
Now is it possible to scan ip containing a login field like python3 lostsec 127.204.2.79:5005
no you need endpoint to test
sqlmap is also good ❤
yes
phonk hacker
Yea 🎉❤
❤️😇
Legend
❤️🤗😇
@@lostsecc would love to chat sometime about a project I have going on
dm me in telegram
@@lostsecc I just did
Bravo 🎉❤😊
❤️
Bro you are doing good but your tools give false positives most of the time
there are many reasons for that buggy dns or main redirect issue due to redirect there is delay so always check manully what the reason..
How i can find my first bug and find a program with bugs ?
hunt on some public responsible disclosure programs
King 🔥📈
❤️
Do not download this shit it not tool for sql its just tool to excute comand on ur system
😐alrday showed the profe in telegram go and check there
Bro have you played Modern combat 5?
ys
So your id was param right?
I was active player on that game and was addicted for 2 yrs. 😂
Hello lostsec, Today you said you want to hack Bangladesh Navy website. I'll request you not to do it. I'm from Bangladesh. If you want you should go for Bangladesh police Site. They killed lots of students today more than 200 hundreds just today.
i did'nt hack i just show i bypassed that and also i reported them ❤️
@@lostsecc Thank you brother. We are passing a critical situation. Only Allah can help us. We feel like Palestinian. Pray for our student brother. Our Bangladeshi hacker group are hacking govt. site to let them realise that govt should stop genocide.
Bro can you also give the method txt file ?🫠
which method i shared in telegram channel
in 0.57
Sir you missed this :( for begginers its tough
cat url.txt | grep FUZZ | gf xss | grep -iavE 'pdf|txt|\?l=FUZZ$|\?contry=FUZZ$|\?q=FUZZ$|is/image' > out_fuzz.txt
🎉🎉🎉🎉🎉🎉🎉❤🙏🏼🥷🏼⚰️🔥🔥🔥🔥🔥🔥🔥 awesome 💯
❤️😇
Yea 🎉❤