#bugbountyTools

Spix0r

@spix0r.bsky.social

8 months ago

GitHub - Spix0r/fback: Fback is a tool that helps you create target-specific wordlists using a .json pattern. Fback is a tool that helps you create target-specific wordlists using a .json pattern. - Spix0r/fback

Then Fuzz for backup files - maybe you'll find a juicy accessible backup file!

Github: github.com/Spix0r/fback

#CyberSecurity #bugbountyTools #bugbounty #Recon #reconnaissance #bugbountytips

5/5

Spix0r

@spix0r.bsky.social

8 months ago

It’s been a while since my last update, but I’m thrilled to share some exciting news about my project called Fback

1/5
#bugbounty #bugbountytips #bugbountytools #recon #hacking #CyberSecurity

Spix0r

@spix0r.bsky.social

1 year ago

GitHub - Spix0r/cloudrecon: This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider. This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider. - Spix0r/cloudrecon

For this purpose, you can use CloudRecon by me:

github.com/Spix0r/cloud...

#CyberSecurity #BugBounty #BugBountyTools #pentest #infosec #Certificate #bugbountytips #reconnaissance #Recon

Spix0r

@spix0r.bsky.social

1 year ago

GitHub - Spix0r/fback: This is a useful Python script for generating a target specific wordlist for fuzzing backup files. This is a useful Python script for generating a target specific wordlist for fuzzing backup files. - Spix0r/fback

I've developed a Python tool called Fback that generates wordlists for fuzzing backup files. It takes a JSON-based pattern file and a seed wordlist as input and produces a target-specific wordlist as output. Github: github.com/Spix0r/Fback

#bugbounty #bugbountytools #cybersecurity

CyberTaters

@potato.software

1 year ago

Out-of-Band DNS Blind Server Setup (Manual Guide) : gist.github.com/Spix0r/9661d...

Data Exfiltration Using DNS (Out-Of-Band) : gist.github.com/Spix0r/6b38a...

3/3

#Mashing #BugBounty #bugbountytip #bugbountytools #PotatoSecurity #infosec

CyberTaters

@potato.software

1 year ago

Out-of-Band DNS Blind Server Setup (Manual Guide) : gist.github.com/Spix0r/9661d...

Data Exfiltration Using DNS (Out-Of-Band) : gist.github.com/Spix0r/6b38a...

3/3

#Mashing #BugBounty #bugbountytip #bugbountytools #PotatoSecurity #infosec

CyberTaters

@potato.software

1 year ago

Out-of-Band DNS Blind Server Setup (Manual Guide) : gist.github.com/Spix0r/9661d...

Data Exfiltration Using DNS (Out-Of-Band) : gist.github.com/Spix0r/6b38a...

#Mashing #BugBounty #bugbountytip #bugbountytools #PotatoSecurity #infosec

Spix0r

@spix0r.bsky.social

1 year ago

This guide offers step-by-step instructions for setting up an out-of-band DNS server using BIND, covering installation, configuration, zone file creation, logging, and validation. It's a practical res... This guide offers step-by-step instructions for setting up an out-of-band DNS server using BIND, covering installation, configuration, zone file creation, logging, and validation. It's a practi...

Out-of-Band DNS Blind Server Setup (Manual Guide) : gist.github.com/Spix0r/9661d...

Data Exfiltration Using DNS (Out-Of-Band) : gist.github.com/Spix0r/6b38a...

3/3

#Hacking #BugBounty #bugbountytip #bugbountytools #CyberSecurity #infosec

Spix0r

@spix0r.bsky.social

1 year ago

GitHub - Spix0r/django-rce-exploit: A Python tool for exploiting Django RCE via deserialization vulnerabilities in session cookies, allowing remote code execution through forged cookies. A Python tool for exploiting Django RCE via deserialization vulnerabilities in session cookies, allowing remote code execution through forged cookies. - Spix0r/django-rce-exploit

I've just dropped a #Python tool to exploit #Django RCE by leveraging #deserialization in session cookies.

It forges a malicious cookie that executes system commands remotely.

🔗 Check it out here: github.com/Spix0r/djang...

#CyberSecurity #BugBountyTools #RCE #BugBounty #Exploit #BugBountyTips