Это видео недоступно.
Сожалеем об этом.
CORS Vulnerability mass hunting on Dell Bounty program worth 500$ | Bug bounty poc
HTML-код
- Опубликовано: 10 мар 2024
- Disclaimer: This video is for strictly educational and informational purpose only. I own all equipment used for this demonstration. Hacking without permission is illegal so always ensure you have proper authorization before using security tools in any network environment. thanks.
![Mary J. Blige - Breathing (feat. Fabolous) [Official Video]](http://i.ytimg.com/vi/snMHObq-6E0/mqdefault.jpg)
Join telegram channel for more :) t.me/lostsec
We are always with u on this. Keep them coming bro
❤️☺️
You deserve more views not because of you POCs but because of the editing, music, background on your computer --> because the video has a great quality
my pleasure brother ❤️😇
this some cool stuff i been learning about using linux recently in a cyber security class make more vids like this its cool to watch
What’s the impact here if you are not fetching any sensitive information, can I report if i found cors anywhere in the web application ?
yeah you need to find it in sensitive endpoint
@@lostsecc thank you so much brother ❤️
im not into bug bounties whatsoever but your vids show up in my recommended a lot and they're fun to watch. you do this for work?
yes i have passion in this field. this is just a begining something best is comming soon i am working on that and if you not joined my telegram please join it have a fun there..t.me/lostsec
Very informative, A very huge help in my study
😇❤️
Bro has done mastery in mass hunting.
its just begining more has to come just wait ☺️❤️
Love you bro learned a lot from you hope you will be uploading more helpful contents ♥
sure ❤️😇
What was that 'Kali Linux' directory you moved the downloaded dell files into ? Is it a VPS ?
its wsl 2 kali
windows subsystem for linux
one fact, CORS is not about the access-control-allow origin its about the information within the endpoint, in many cases it can be critical if it can be leveraged to ATO, or DB Creds, and it can be informative...
yes,make sure your findings contains sensitive endpoint otherwise its get n/a or informative
Hey bro keep this series on going i love this series of yours mass hunting.. and can you teach us some tricks and shoecase your recon or finding skills and i also wants to know how you change your wsl theme can you make a video on it
my next video is going to be best there i will.show you how to recon and end with exploit so wait for sometime..and if you not join my telegram.must join that t.me/lostsec
@@lostseccbro waiting for that video 🎉 hurry up
Man awesome i want more videos like this please continue this series
something more has to come ❤️ just wait
Bro i have got an xss vulnerability from a government website of Karnataka called Gruha Jyothi in search parameters using xssstrike how to report the bug bro
report in rvdp email
@@lostsecc thanks bro i learned from u only bro and now I learned to find cors vulnerability also
DUDE DONT REPORT
vo log 1 rupiya nahi denge
Exploit kar
Scam kar logo ko and Paisa kama
Wtf the background song 😂 ( put your hand) fuckng SBI 😂😂😂
😂😅
Hi how are you amazing content I'm just starting out in this area One question, do you use kali as the main or secondary system?
i dont use kali i use wsl2 with kali
understandable success my friend... do you have discord?@@lostsecc
Understandable and a smart tactic on your part. What incredible content...do you have discord?@@lostsecc
windows os, linux terminal, font comic sans yeah that checks out
wsl2 ohmyposh theme
that's another awesome video. can u drop your playlist you use in videos?
join telegram @lostsec
Hey man love your videos may i ask is it fine to show a vulnerability like this when it has been reported or do you juat do it eitherway😂 ?? Anyways love the content and good vulnerability finds and content.
its not allowd but i do for you all guys 😉❤️
🤣@@lostsecc
I found cors vulnerability in vdp website but that url is not giving any sensitive information, can i report without fetching sensitive info or should i further exploit until i find sensitive information? my report will accept if i didnt find sensitive info?
cors are only accepted if its found on senstive endpoints that are not publically accessble like your own profile data
didnt understand a thing but looks cool
its a cross origin misconfiguration if any site has cors enable to any domain that will lead to get victim account data ...to attacker controlled server
bro, I have a question, how do you show the impact of that CORS vulnerability
make sure it should contain sensitive endpoints..
That might be one of the most corny browser wallpapers I've ever seen
🌝
Bro your wallpaper is very cool whare you download this wallpaper plz tell me
penterest
Nowadays CORS Vulnerability is not considered
By some organizations
depend on the sensitive endpoint
Access Control Allow Cred should be true for the report to be impactful
yes
What version is this song its not the one in description
memory reboot slowed version
apparently youtube decided to put me on the hacking side, i have no clue about a single thing you just did
dont woryy brother u will learn all just join telegram.channel t.me/lostsec
If the website is publically available and its vulnerable to CORS, then what is the impact?
no impact on publically accessble endpoint for cors you need senstive private endpoint
@@lostsecc exactly. But the way you showed is only for public endpoints right?
How you got 500$ bounty for reporting a bug for the information that is anyways public?
How much years you are doing this?
1yr
Thank for the content bro but can utell me whats the impact of this vul. Does it help u to get the dom code of the web app or what?
hacker can steal your login data or site data containing your private info
Been curious abt bug bounties but have no clue what is going on in vid
today dropping video must watch that..
hello friend Origin header reflacting but ACAC not there is no header ACAC so CORS possible or not?
not possible.you cannt extract data
nice boss thank you very much !!!!!!!!
you are welcome bro ❤️
is there any sensitive endpoint or action? bc if isn't there any its just infomative
yes find it on sensitive endpoint i cannot make full bcz they contains senstive info show but hope you got idea how to hunt for that
@@lostsecc than nice catch
😅idk what happened but i watch
where can i find this folder with all the sublinks?
you need to install manually
Why are you using caido? Is it better than burp? Or is it just your preference?
i use both i just love UI of caido and it better for sending poc for reports to programs bcz its look clean and stylish font and colorss..
@@lostsecc did dell accept this report of yours?
reported waiting for the reply..
@@lostsecc won't they be mad because you posted it on youtube before they responded?
bcz i no its not in sensitive endpoint so 😉
Did you really get bounty from just reporting a CORS without any other impact of it?
you need to find it on sensitive endpoint
what is choas projectdiscovery
it give all bug bounty programs latest filter subdomains from best tools..
dell doesnt allow automated scans
how they know we are using 😉 after finding just use burpsuite and send the poc
Kali terminal on windows like urs or kali on virtual machine?
yes but its wsl2 with window terminal
and tool use cors found ?
corsy join my telegram i shared all templates also t.me/lostsec
very nice bro much love
love you three bro ❤️
How did you learn bug hunting ??? Excluding open source, anyother resources?? And what are the resources?. Please make a video about it
portswigger labs + tryhackme webapp labs + twitter + medium artical + hackerone reports + yt + chatgpt
@@lostsecc can you please make a video??? With all links and resources?
ok
@@lostsecc thank you
Bro anywyas do you want us to create a discord server
sure i.will make.
for now.just join telegram channel @lostsec
What vps Best for bug bounty fd or buy in cryptocurrency plz tell
i will share.free vps in my telegram @lostsec
interesting stuff dude!
❤️
what does -silent do?
its give clean result not enclude verbose mode
love from nepal ❤❤
❤️😇
Cool cmd
🗿
How did you make you CMD look like this
"Terminal" on the microsoft store
wsl2 kali with ohmyposh custom themes
@@lostsecc thanks
@@Luna5829 Ahh yes I forget you can download themes there.
I want to do bug bounty.So i have to learn web development or not??
Cong. for 4k bro
programming is not required in bug hunting but if you have knowledge its best like html css javascript dbms php is best but in bug hunting there is mang methods and tools that does not require programming ...and thnq so much ❤️
@@lostseccwow fr , are you going to upload that guide ?
sure
bro you could write simple python code to remove first 2 symbols 😭 also nice video
whichone
@@lostseccthe dell.com.txt file
Use vps bro
How can I study the things you do and what courses I am supposed to take to stay like you and thank you❤❤❤
I want to be like you❤️❤️❤️
start from.portswigger labs and do more practicle and read hackerone and medium reports
im sorry but who the fuck does right click -> save, right click -> copy, right click -> paste and not just fucking ctrl+s, ctrl+c, ctrl+v 😭
i do hunting with light off so keyboard keys are not visible...also its depend on my sitting position in which i confortable so...
@@lostsecc you don't have your keyboard memorized? Failure as a hacker....
you know my typing speed is between 80-100 wpm 🗿 i have seperate keyboard for that rgb one..will show in telegram live someday...
@@lostsecc Slow. Talk to me when you're at least 200.
i have not only typing things in my life brother there is also other things to do..
can you provide the poc
i shared in my github repo
Bro which search engine are you using to find subdomains
chaos
@@lostsecc thanks vro
Explain in the video how to install windows terminal and change the theme
just download it from microsoft store and install ohmyposh theme
Great great great >>>>
bro give me the html code to exploits the CORS please
i shared in my telegram
what is your process learn about Vulnerability and search in web sites or what
i am uploading full bug hunting series just wait for some times ❤️
Waiting @@lostsecc
Did you get paid?
find it on sensitive endpoint
Helpful video 🎉😍
❤️
Nice job
thnq brother ❤️
hand-pink-waving
King
❤️
please make a video on mass hunting rce
sure
bro can gimme detail abt the html content and what it do and i joined the telegram and also got the html file frm github
i will share poc report in telegram
Thank-you bhaii
Subscribed + liked
☺️❤️
Is this a hobby or are you doing this for money? Also, do you have to prove that vulns can be exploited before you receive a bug bounty?
this is my passion ! and i love this more then anything.also vulnerability can be exploited if you want but due to program policy its illigle to do that..
I will wait you upload :D
❤️
@@lostseccim doing bug bounty on linux rn
good
@@lostsecc man i cant do it anymore i dont know how to do it next bruh
dont worry i will.make playlist for hunting from start
good content 👍
thnq man ❤️😇
@@lostsecc np ,keep it up
Tool are using where i can find that btw thanks for awesome content 🎉❤
join my telegram @lostsec
@@lostsecc done ✅
plug and play scripts = money
HI man can you give your CORS.html file?
github.com/coffinxp/CorsExploit/blob/main/CorsExploit.html
@@lostsecc thanks man keep up the work kudos!
tool for cors?
i will share in my telrgram @lostsec
Bro how to change theme
wsl2 kali with ohmyposh theme
good job ❤😊
thnq bro ❤️😇
the best broo omgg
❤️
can we have the lulzsec tool
sure i.will share
thanks
😃@@lostsecc
im sorry but there is nothing ?@@lostsecc
ClumsyLulz? signallings?
what
Do you know who that is?@@lostsecc
what did'nt get u
how can an attacker exploit cors vuln
they will upload that exploit in there server and if attackrer visit there site there data will be fetched by there server
@@lostsecc I don't understand sorry, can you rephrase it?
its suppose site has cors misconfig so you are loged in you dell.com and you have your data in profile likr name.address ph no and all sensitive..so if you visit attacker server that have cors exploit hosted in there server so when u visit your profile sensitive data will be fetched by there server like name.email.ph no etc..hope you understand.
@@lostsecc yh i do thanks, so when a website has cors vuln, the data on it like cookies can be accessed from another website
yes if there is no protection on cookie like http only and same site cookie..
Cool ❤️
❤️😇
hunting on money Bounty online shoping video
sure
@@lostsecc paywall byypass
why u remove the *. manually bruh. We have chatgpt or others AI with help of these AI we can make simple line regex bash. So I think that will save ur time lot.
i know bro i can also do this by match replace and sed comand in terminal but that take another time so thats why i do its simply otherwise i will do it in terminal ...
bro where can i get cors py file
just search in google corsy github
Proof
Good job , give us the code of the Python file 🌚
i uploaded in telegram @lostsec
Can u make video mass hunting with hackerone
sure
@@lostseccalso do u have discord we can be friend :D
i have but i dont managed all so i just active on telegram
@@lostsecc ohh
How is your wsl co cool
What theme or app do you use to get that
its window terminal with ohmyposh customization theme
can you share the python file of the cors?
i shared in my telegram check out @lostsec
@@lostsecc you have not shared
rien compris mais c'est stylé
its cors miconfig by this if victim visit attacker controlled domain there data will.be fetched to there server if there are login in dell there account details data will.be fetched ...attacker can host cors exploit on there server for this like i made a tool ..
do you know how much time it take to learn cybersecurity from scratch ?@@lostsecc
Music name
after dark
you have github ??
yes name Coffinxp in github join my telegram for more @lostsec
👍🏻
program name in 3:42
caido
@@lostsecc tyty
🎉
❤️
W
I’m starting to think you’re more than just a mass hunter😬
You
Lulz
Sec
just check my anothet channel in telegram @lulzsec1ndia you will know real me ☺️
@@lostsecc 👽
waiting for python file
its upload in my telegram @lostsec