Find bugbounty targets bb.pikpikcu.com
January 1, 2025 at 1:18 PM
Find bugbounty targets bb.pikpikcu.com
CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
blog.doyensec.com/2024/07/02/c...
github.com/doyensec/CSP...
blog.doyensec.com/2024/07/02/c...
github.com/doyensec/CSP...
GitHub - doyensec/CSPTPlayground: CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT). - doyensec/CSPTPlayground
github.com
October 25, 2024 at 6:34 AM
CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
blog.doyensec.com/2024/07/02/c...
github.com/doyensec/CSP...
blog.doyensec.com/2024/07/02/c...
github.com/doyensec/CSP...
CVE-2024-9264 - Grafana Post-Auth DuckDB SQL Injection (File Read)
POC: github.com/nollium/CVE-...
Search Engine Dork:
SHODAN: product:"Grafana (Open Source)"
FOFA: app="Grafana"
#Vulnerability #bugbounty
POC: github.com/nollium/CVE-...
Search Engine Dork:
SHODAN: product:"Grafana (Open Source)"
FOFA: app="Grafana"
#Vulnerability #bugbounty
GitHub - nollium/CVE-2024-9264: Exploit for Grafana arbitrary file-read (CVE-2024-9264)
Exploit for Grafana arbitrary file-read (CVE-2024-9264) - nollium/CVE-2024-9264
github.com
October 25, 2024 at 6:01 AM
CVE-2024-9264 - Grafana Post-Auth DuckDB SQL Injection (File Read)
POC: github.com/nollium/CVE-...
Search Engine Dork:
SHODAN: product:"Grafana (Open Source)"
FOFA: app="Grafana"
#Vulnerability #bugbounty
POC: github.com/nollium/CVE-...
Search Engine Dork:
SHODAN: product:"Grafana (Open Source)"
FOFA: app="Grafana"
#Vulnerability #bugbounty
Custom ffuf fork that relies on modified net/http and net/url libraries to avoid strict header and URL parsing.
github.com/sw33tLie/uff
github.com/sw33tLie/uff
GitHub - sw33tLie/uff: unleashed ffuf
unleashed ffuf. Contribute to sw33tLie/uff development by creating an account on GitHub.
github.com
October 25, 2024 at 5:54 AM
Custom ffuf fork that relies on modified net/http and net/url libraries to avoid strict header and URL parsing.
github.com/sw33tLie/uff
github.com/sw33tLie/uff
hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a target URL or a list of URLs. It injects various header values and checks for potential vulnerabilities.
github.com/pikpikcu/hos...
github.com/pikpikcu/hos...
GitHub - pikpikcu/hostinject: hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a target URL or a list of URLs. It in...
hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a target URL or a list of URLs. It injects various header values...
github.com
October 24, 2024 at 9:51 AM
hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a target URL or a list of URLs. It injects various header values and checks for potential vulnerabilities.
github.com/pikpikcu/hos...
github.com/pikpikcu/hos...
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file download and wordlists creation.
github.com/pikpikcu/js-...
github.com/pikpikcu/js-...
GitHub - pikpikcu/js-finding: JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides ad...
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file d...
github.com
October 24, 2024 at 9:45 AM
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file download and wordlists creation.
github.com/pikpikcu/js-...
github.com/pikpikcu/js-...