
Dark@Joker:~$
@ExploitNest
CRTA | CAP | OSCP (Aspirant) - Pentration Tester & Bug Hunter - Red Teamer 🤡
Nobody can memorize all XXE payloads/vectors. Use this payload list when testing for XXE vulnerabilities: github.com/payloadbox/xxe…
location-based WAF bypass techniques Tag Blending: <Svg OnLoad= location=textContent>JavaS<a>cript:al<a>ert(<a>1)// Template Literals: <Svg OnLoad= location=`Java${/S/.source}cript:alert${"\50"}1)`> Credit - @BRuteLogic
📂 Target: robots.txt + sitemap.xml 👀 What to look for: /admin_old/ /staging/ /backup/ Hidden API routes .env, .git, .bak files 🎯 Use found paths in: Fuzzing Bruteforce Hidden login discovery
Ultimate Reconnaissance + Port Mapping Methodology (Advanced) 1. Enumerate all the domains+subdomains `$ amass enum -ip -d <domain>` 2. Extract the hosts from the Amass file, to create a file named hosts-amass.txt. `$ cat amass_output/amass.txt | cut -d']' -f 2 | awk…
![TheMsterDoctor1's tweet image. Ultimate Reconnaissance + Port Mapping Methodology (Advanced)
1. Enumerate all the domains+subdomains
`$ amass enum -ip -d &lt;domain&gt;`
2. Extract the hosts from the Amass file, to create a file named hosts-amass.txt.
`$ cat amass_output/amass.txt | cut -d']' -f 2 | awk…](https://pbs.twimg.com/media/GoUWKW3XgAAtFWw.jpg)
United States Trends
- 1. #AEWDynamite 5,226 posts
- 2. Knicks 20.8K posts
- 3. VJ Edgecombe 3,545 posts
- 4. Cavs 11.6K posts
- 5. Embiid 5,709 posts
- 6. Inside the NBA 5,331 posts
- 7. Lonzo 2,544 posts
- 8. East Wing 152K posts
- 9. #NewYorkForever 1,965 posts
- 10. Mobley 2,572 posts
- 11. Barlow 2,216 posts
- 12. #LetEmKnow 4,550 posts
- 13. Brunson 4,455 posts
- 14. Sixers 7,660 posts
- 15. Tyler Kolek N/A
- 16. Mikal 1,797 posts
- 17. Mike Brown 3,309 posts
- 18. Jashanpreet Singh 7,797 posts
- 19. Maxey 1,221 posts
- 20. Norman Powell N/A
Something went wrong.
Something went wrong.