$1100 bugbounty | ssrf using html injection | bug bounty poc | hackerone | ssrf poc |
HTML-код
- Опубликовано: 11 сен 2024
- #education #learnEthicalHacking #bugbounty
For education purpose only,
you can learn the numerous ways to do a security testing for a website or mobile apps.
like and subscribe to get notified with the latest exploits.
Brother hello 👋. I have doubt. I can get blind ssrf request to burp collaborator url but when i give ip address I can’t get a ping back like this ?? Why ?? What ip should i give
for ip address use Shodan.
And embed that URL to the burp collaborator payload.
It's not necessary that you get a ping back.
The endpoint might not be vulnerable.
Hey bro its not ssrf its something called "external service interaction"
well done . keep gonin
Isn’t it just a http request? Were you able to do any kind of SSRF based attacks like Port Scanning or others?
yes, there was a possibility for a attacker to do port scanning and has shown in video getting reverse sell is also possible.
@@HACKERFUDDI What reverse shell? That was just a HTTP request to your listener?
@@HACKERFUDDI this isnt reverse shell lmao you just shown dns pingback
Nice bro 👍
Hello. Thank you for good video. In 0:59, As far as I understand, if someone malicious refreshes a post registered with a malicious image code profile, will receive information, is my understanding correct?
If some user gets to that place, and the attacker do have listener on, he will receive the information, no need to refresh.
Bro zoom please your video
Hii bro how are you I'm @Chhota_hacker
Bhai xss nikalne ki bonty milti hai kya bhaiya
Kyu nai milegi
Bhai yr ap bahoot funny ho yr mst bande hoo ap
Ek kam kronge mera
Mujhe apke sath rakh lo
Its not clear , can u share ur write-up plz !!
I don't write write-ups,
But i recommend you to search for ssrf vector in Google and watch the video again.
Bounty?
1.1k
Hi broo
Yo bro.
@HACKER FUDDI can u teching me pro in bug bonty i will daily 15 hours spending time with pc and i will all basics are clear and nmap use burp suite use and i will daily spand whool day this field but bro i can not achive any point please bro help me
Note:- I am not making fun of you.
But you should improve your English.
Finding and testing for bugs is 50%,
Rest require reports writing skills.
And for rest, read blogs, RUclips tutorials, buy some online courses.
Bhaiya English improve to ho jayegi but bhaiya propar guide chahiye our kitne din.me pura train ho shkta hu mai
Jotis dhika kya bhai me tere ko.