My JS surface mapper is now live in CAI (@AliasRobotics). It's a tool for the web pentester agent that does JS analysis: github.com/aliasrobotics/cai…

Nominations for the Top 10 (new) Web Hacking Techniques of 2025 are now live! Review the submissions & make your own nominations here: portswigger.net/research/top…

$1,000 GIVEAWAY 🎁‼️ Here’s how to enter: 1️⃣ Fill out the ITMOAH survey 2️⃣ Like this post 3️⃣ Comment your fave tool 4️⃣ Repost bc your friends deserve a chance too Giveaway closes Sept 30 at 11:59pm ET. One hacker takes home $1K. 20 others will score $200 each. Already filled out the survey? You’re entered to win! If not, now's your chance: surveymonkey.com/r/bugcrowd-…

If you are interested in learning how I use AI to automate pentesting you should follow me on Linkedin. I often post stuff about the research my company stealthnet.ai (@StealthNetAI ) is doing on there. linkedin.com/in/alex-thomas-… #redteam #aipentesting #infosec #VC #VentureCapital #startup #automatedpentesting #pentesting

Eid Mubarak 🌙✨

Had an amazing time at Exploit Exchange: A Gathering for Bug Bounty Hunters & Penetration Testers🔥 Huge thanks to @Hacker0x01 & @remonsec for hosting this awesome event happen. Great meetup, awesome discussions, and unforgettable moments⚡ #BugBounty #hackermeetup #aoxsin

WordPress quick wins! 😎 #HackWithIntigriti

What’s up @KN0X55 From the pro to the pros. All credit goes to @KN0X55 and @BRuteLogic XSS is confirmed. Sqli is confirmed. Lfimap still working on the lfi list.

Early results from the StealthNet.AI beta Congrats to @aoxsin for securing a bounty with our AI-powered agent 🔗Bug Bounty Hunting Using StealthNets AI Agent shorturl.at/iU196 #bugbounty #AI #CyberSecurity #infosecurity #AIforSecurity #Pentesting #StealthNetAI

Meet the Future of Cybersecurity: AI-Powered Hacking StealthNet.AI Agentic AI revolutionizes pen testing with autonomous assessments. Watch our beta demo to see AI agents think, adapt, & hack 🤖🔍 💡 Want beta access? Comment or DM! 🔗 bit.ly/4i70Fv9

ok, so, as a reminder, my recon course is free on youtube, go check it out. (and I demonetized my channel a while ago so that there are no ads - not sure if that works).

Taking our target root domain (for Bug Bounty / Responsible Disclosure) such as deepseek[.]com, we will want to feed it into DNS Discovery tools, those divide to 2 main workflows - Passive & Active. In the passive sense, we want to query public DNS datasets all over the internet and collect known subdomains of our target, the best way to do that is using a tool such as subfinder by @pdiscoveryio In the active sense, we will collect public wordlists with hundreds of thousands of domain names, and will try to fuzz and "guess" additional valid domains under our target - deepseek[.]com, such as "admin.deepseek[.].com" etc,etc... For this task, a tool I recommend is Puredns github.com/d3mondev/puredns Which is simply run by the following command: Additionally, there are more techniques such as permutation (adding dev-admin.deepseek[.]com for example) but we will leave it like that. The goal of this phase is to collect a list of valid subdomains, and save them all in a single place. Valid subdomain in our sense - a DNS record that has an IP Address or points to another asset.

You found this new host via Shodan with an open HTTP server on port 8443 with a default IIS server homepage... 🧐 Quick fuzzing led to the discovery of the /AdministratorLogin.aspx endpoint 👀 But how do you continue from here? 🤔 In our latest article, we went over various ways to exploit broken authentication vulnerabilities! Check it out! 👇 buff.ly/49o2XCL

JavaScript Treasure Hunt JS files often contain references to API endpoints that aren't immediately visible in the web interface. 1. Use Burp Scanner or the JS Link Finder BApp to extract these endpoints from JavaScript files. 2. And, imo, manually reviewing JS code will invariably yield valuable insights. More: portswigger.net/web-security…

#NahamCon2024: .js Files Are Your Friends | @zseano youtu.be/fQoxjBwQZUA?si=NERP… via @YouTube

My @defcon talk about how we made around $150k in Bug Bounty only with Denial of Services is out ! Let me know what you think 😁 youtu.be/b7WlUofPJpU?si=Ef4m…

Is this the best and fastest recon framework? 🎥👉🏼youtu.be/GOwq95QMv_g