$2900 Bounty SQL Injection Bug Bounty POC 2024 | Private Bug Bounty Program
HTML-код
- Опубликовано: 11 сен 2024
- $2900 Bounty SQL Injection Bug Bounty POC 2024 | Private Bug Bounty Program
-----------------------------------------------------------------------
Twitter: / abhishekmorla
Website: abhishekmorla....
Linkedin: / abhishekmorla
------------------------------------------------------------------------
reference : Union based
portswigger.ne...
#BugBounty #EthicalHacking #penetrationtesting #RemoteCodeExecution
#FileUploadVulnerability
#BugBounty
#EthicalHacking
#WebSecurity
#Cybersecurity
#POC
#VulnerabilityResearch
#ServerSideInjection
#HackerCommunity
#BugHunting
#SecurityFlaw
#Exploit
#WebApplicationSecurity
#CyberAwareness
⚠️ Disclaimer: This content is solely for educational purposes and should not be used for unauthorized activities. Always obtain proper authorization before performing any security testing.
![Chlöe - Shake (Feat. Jeremih) [Official Visualizer]](http://i.ytimg.com/vi/aDs_1ufpfv8/mqdefault.jpg)
VERY CLEAN & NICE FINDING
Thanks for your video Abhishek vai, It's helping me.
Can you please answer my question?
how many time you spend for hunting? and do you have any jobs, or you are full time hunter?
I have a job
Almost $3k for this. I find it hard to believe it. But nice video.
great, did you used nuclei template for identifying the vulnerability or it was all manual?
Manual
How do we get a private program? Is it by reporting more in public programs?
Yes that works in bugcrowd
How you found it at start , by giving single quote it just replied 0 results not internal error. Then ?
do lab on portswigger bro
What tool you are used for finding sql injection
tool: knowledge
@@rodricbr i know that they not reveal exact strategies and also tools
its is sqlmap dude
@@Xt3sY am not an beginner hunter there 20 + tool for finding sql injection an just asking him to which tool he is used for
m pretty sure its sqlmap only @@leo___333
good bro
fake bounty? i mean sqli its very basic or common vuln why would someone pay you almost $3K for an common vuln 🧐
Read channel disclaimer
How much they pay not beacuse of what kind of bug. It depend on impact. But why do they make basic mistake 😂😂
Hi Abhisek, your videos are very interesting. Do you take classes also?
No
Is Web Security Academy's sqli labs are enough for starting the sqli bug bounty journey?
Yes
Can you tell me how to find website database type like my SQL or p or mongo etc
Use wappalyzer extension
@@abhishekmorla1 yes but it won't show for some websites
@@AnithaSrinivasa then analyze source code
bro upload full video find the parameters
For all request we have to give this search command or else any particular restrict or type of request?
join the channel to learn more
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
How You Just Identify Vulnerabiltes For Testing
Follow checklist
@@abhishekmorla1 which person checklist you should follow can you send me
@@abhishekmorla1what checklist please?
@@abhishekmorla1 how so bro?
What is the sleep line used for?
sleep 12
to delay
0:57 can i ask shortcut?
Join ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
How to report to target website?
Email
How much time it took to get that
Idk
Telegram channel?
ruclips.net/channel/UC9IAh1JN4lhSVz193GvZVZgjoin
Nothing easy than trying payloads , give from beginning bro
Ok
@@abhishekmorla1bhai tum steps to reroduce dala kro achese samaj mai ayenga phir
Bug name and template please send me I am hunting bug and report
Text at discord