Bug Bounty Toolkit

Bug bounty platforms and programs Get paid for finding bugs and vulnerabilities bugcrowd https://www.bugcrowd.com/ hackerone https://www.hackerone.com/ synack https://www.synack.com/ Cobalt https://cobalt.io/ Zerocopter https://zerocopter.com/ Training Labs vulnhub https://www.vulnhub.com/ Free capture the flag virtual machines to download, run, and practice against. PentesterLab https://pentesterlab.com Free downloadable VMs and paid for online training and labs. Certainly worth checking out. Tiredful-API https://github.com/payatu/Tiredful-API... Continue Reading →

XSS Cheat Sheet

Basic and advanced exploits for XSS proofs and attacks. Work in progress, bookmark it. Technique Vector/Payload * * In URLs: & => %26 , # => %23 , + => %2B HTML Context Tag Injection <svg onload=alert(1)> "><svg onload=alert(1)// HTML Context Inline Injection "onmouseover=alert(1)// "autofocus/onfocus=alert(1)// Javascript Context Code Injection '-alert(1)-' '-alert(1)// Javascript Context Code Injection (escaping... Continue Reading →

The 7 Main XSS Cases Everyone Should Know

When reading material on XSS subject we usually see the classical alert(1) as an demonstration of such vulnerability (PoC – Proof of Concept). While very true, it doesn’t go much beyond this, making the novice in this field to look for more in order to deal with real world scenarios. So here are the 7... Continue Reading →

Top 10 Programming Languages Used By Coders On Github

Now when everyone is moving from papers to digital world, the race has begun. Now, having a basic knowledge about the tech is not sufficient. Learning how to express in the web world has now become a necessity. Coding is a skill, a language that is really opportunistic and in demand. It is a language... Continue Reading →

New Programming Language “Kotlin” used for Developing an Android Malware

An Open-source Programming language “kotlin” has bee used to develop malicious Android apps that are capable of hijacking an Android mobile and as a similar malicious Android app called Swift Cleaner has discovered in Google Play store. In May 2017 Google announced kotlin Programming language to Develop an Android application and the Android team has... Continue Reading →