Offensive OSINT s03e02 - Bug Bounty monitor + Elasticsearch and Telegram notifications
Today we will focus on reconnaissance and monitoring organizations from bug bounty programs. I will present solution to
Offensive OSINT s03e01 - LeakLooker and Angular applications
We start this season from interesting update to LeakLooker where thousands of companies are vulnerable. From now, it all
Offensive OSINT s02e06 - Journey over exposed databases
Today we will do a deep dive into different sources of data leaks. I prepared an update for LeakLooker X which fixes all
Offensive OSINT s01e07 - Offensive leak hunting with LeakLooker
In this episode we are going to find a sensitive data leak with unique tool I made - LeakLooker X. I added new features
Advanced credential stuffing with PEPE
Script parses Pastebin email:password dumps and collects information about each email address. It supports Google, Truma
Couple words about rsync protocol based on leak of 2k emails from Czech university.
I would like to show how misconfigured rsync protocol can lead to data breach or compromise company and how to secure yo
How I Discovered 50k Australian Bank & Government Records (Data Breach) Online
Originally published on October 29th, 2017TL;DR With help of AWS3dump and my poor coding skills I found database backups
How to find internal subdomains? YQL, Yahoo! and bug bounty.
When I’m looking for new target on Hackerone I’m always paying attention to numbers of resolved reports and wonder if hi

Page 1 of 1