Bug Bounty: Content Discovery on Large Scope Like a Pro! | 2024
HTML-код
- Опубликовано: 11 сен 2024
- Are you ready to take your content discovery game to the next level? In my latest video, I dive deep into how you can approach large-scope targets like a pro using the powerful tool, meg by tomnomnom. If you’ve ever felt overwhelmed by the sheer size of your target or unsure where to start, this guide is for you. I'll walk you through the entire process, from setting up meg on your machine to leveraging it for massive content discovery. Whether you're dealing with a sprawling web application or multiple subdomains, I'll show you how to uncover hidden endpoints and juicy files that others might miss. Perfect for both beginners and seasoned hunters looking to refine their approach, this video is packed with practical tips and real-world examples. Don’t just scratch the surface-learn how to dig deep and find the gold in your next engagement.
Website: bepractical.tech
Telegram: telegram.me/be...
Previous Video: • Testing XSS Tools On T...
The Art Of Web Reconnaissance:
www.udemy.com/...
Hacking Windows with Python from Scratch: www.udemy.com/...
The Ultimate Guide to Hunt Account Takeover:
www.udemy.com/...
informative!
20K Special When
Let's reach to 20k first!😉
Bro your website is not working it shows 522 error in response and no cookies are stored in order to establish stable connection 😅
Still the best author on youtube
Thx am gonna check it out this tool will be really helpful to go around ip block by or rate limits when doing content discovery especially when u have a big worldlist
Please post a video about your approach on the target
What is the difference between Ffuf and meg , If we get block then we can use with proxychains ???
Thanks, brother, 🎉❤ but I guess it's a useless tool 🔧 because it needs wordlists pathlists, and even after providing all this, I failed to find the vulnerable endpoints and parameters like aspx?id=0 or php?id=0 Better to use parampram, parameth, katana, collector, carridi, etc. Thanks 🎉❤
@@Free.Education786 It is a good tool to do a quick recon on large scope targets
Bro which terminal are you using.
Termius
Bro, bring some advance xss techniques to find xss.
Bhai kesi bhi site mai, profile photo ki jagah php shell upload ho raha hai wo bug haga na, mai jayada padai likha nhi hu english mai kaise report likhna hai hame nhi aata bahut problem ho raha, report submit kardiya hu hackerone mai, lekkin wo log step by step likhne ko kahe Raha likh nhi saka kia karu kuch batuo yaar
Bhai wordpress ki site mai post per xss script dalne kaam kar raha hai tum jara dekho na, or hackerone mai report step by step kaise likhna padega kuch batuo yaar
Make a video about vps server for bug bounty
Hello, may you please make a video on how to bypass 403 to access a file or directory?
I have already created some videos on this. Please take a look at them
ruclips.net/video/mxSJp_4mVJ0/видео.htmlfeature=shared
Hi bro can you please make a video on what to do after finding subdomains
Yes!
How do you submit a vulnerability to a company that doesn't have a bounty program?
@@Eazi_boii Contact them via linkedin
what is the use of VPS?
virtual private services
katana and meg doing the same thing but different menthod .am i right ?
@@TonyVarghese-b5f Yes
Brother please send me your background wallpaper
Which vps you are using
@@the_py_coder Contabo
-o error
Can you share your methodology
I'll keep this in mind for my upcoming videos😉😉
hi bhai aapk video dekh ka aacha laga bro mujha burp ka related aap se kuch help cahiya thi please agar meri help kar de ge to maa aapka aabhari rahu ga
send a mail at learnthepracticalway@gmail.com
@@BePracticalTech bahiya i have send you the mail please kindly help if you can