Videos
-
AEM Security Assessment | fiverr | Website Coming Soon!!!
Is your company's AEM Instances at risk from hackers? well I have some great news!. I will be providing a confidential In depth AEM Security Assessment for a price of AU$552.44. This will include a security assessment performing both manual & automatic tests on your AEM dispatchers to make sure there secure and cannot be bypasses and exposed. I will also provide a very detailed report written specifically for your company with:
- Execute summary
- Risk Matrix
- Proof of concepts / images
- References
- Scope tested
- Remediation Advice
If you feel like this is for you.
Send me a message on fiverr below.
https://www.fiverr.com/krypt0mux/provide-an-in-depth-aem-security-assessment
#aem #security #assessment -
Creating a Recon Database For Recon At Scale
Let's Create a Recon Database for performing automation with nuclei at scale.
# Commands
https://github.com/ethicalhackingplayground/recon_db_scripts
Support the stream: https://streamlabs.com/krypt0muxgaming
#recon #database #bugbounties -
Installing and Using XSSTron for Bug Bounties
Hey hackers what's up, in this video I will talk about using XSSTron to find cross-site-scripting vulnerabilities.
XSSTron is an Electron based JS Browser used to find XSS vulnerabilities, similar to knoxss. It also has the option to open a list of urls to test for xss.
To learn about this more please site back, get yourself a coffee and watch this video.
Tool:
https://github.com/RenwaX23/XSSTRON
Patreon:
https://www.patreon.com/krypt0mux
Twitter:
https://twitter.com/z0idsec
Thanks and feel free to subscribe, it always makes me happy! π
#xss #js #browser -
7 Ways of Making Money Hacking
I will be explaining in this video 7 different ways you can make money hacking.
Please stay tuned make yourself a coffee, sit back and enjoy the video π
# Follow me on twitter!
https://twitter.com/z0idsec
# Check my Facebook page out!:
https://www.facebook.com/krypt0muxbugbounty
# Feel free to check out my Course:
https://www.udemy.com/course/practical-bug-bounty-techniques-complete-course/
Thanks for the support π
#tips #money #hacking -
Demystifying Reverse Proxy Misconfigurations
This lesson I will talk about the differences between reverse proxy servers & proxy servers and the misconfigurations that can come with them.
- Support me on Patreon:
https://www.patreon.com/krypt0mux
- Keep up to date on Facebook:
https://www.facebook.com/krypt0muxbugbounty
- Follow me on Twitter:
https://twitter.com/z0idsec
- Buy some cool merch:
https://www.redbubble.com/people/Krypt0Mux/shop
Thanks for watching !!
#api #reverse #proxys -
SSRF Plugin for Burp
Hey hackers, in this video I will show you how to use my SSRF plugin for burp which is available on Github:
https://github.com/ethicalhackingplayground/ssrf-king
I'm waiting to here back from port swigger to see if it will be approved for the bAPP store.
Feel free to let me know how you go, if you have any issues or new feature's you would like me to implement. Submit them here.
https://github.com/ethicalhackingplayground/ssrf-king/issues/new
#burp #ssrf #portswigger -
SSRF-KING proper video coming soon! (teaser)
hey all,
was so excited to release this video on YouTube. Ive released a ssrf plugin for burp which works both passively and actively to detect external interactions.
I will release a video this week about the tool. I was just so excited to show you all this tool.
# Plugin
https://github.com/ethicalhackingplayground/ssrf-king
talk to you all soon.
#ssrf #burp #hacking -
![[SubNuke] Subdomain Takeover Tool / WIN + PROFIT π²π²π² π±π±](https://i2.wp.com/i.ytimg.com/vi/pYewle2HcTw/sddefault.jpg?w=860&ssl=1)
[SubNuke] Subdomain Takeover Tool / WIN + PROFIT π²π²π² π±π±
Welcome,
I will be showing you how you can make money through a subdomain takeover tool designed & programmed by some of the best hackers.
# JOIN NOW!
π https://forms.gle/Rpka3C3TpZKXCMop7
# JOIN ME ON TWITTER!!
π¦ https://twitter.com/z0idsec
# JOIN ME ON FACEBOOK!!
https://www.facebook.com/krypt0muxbugbounty
# JOIN MY PATREON FOR TUTORING!!
https://www.patreon.com/krypt0mux
Thanks for watching!!
Please, like comment & subscribe.
#takeovers #tool #recon -
![Bug Bounty Tip: Prevent Rate Limiting [Bypass IP Restrictions]](https://i1.wp.com/i.ytimg.com/vi/TlefxPYPfbs/sddefault.jpg?w=860&ssl=1)
Bug Bounty Tip: Prevent Rate Limiting [Bypass IP Restrictions]
If you want to learn how to use a VPN in bugbountys, watch the video to learn more.
I hope you enjoy the video, if you would like a FREE $100 for a digital Ocean VPS
click the link below:
https://m.do.co/c/92568baf7849
BE MY FRIEND:
π¦Add me on Twitter: https://twitter.com/z0idsec
ABOUT MY CHANNEL:
Krypt0mux Bug Bounty TIPS
Support my work:
Join me on Patreon! https://www.patreon.com/krypt0mux
PS: Some of the links in this description are affiliate links that I get a kickback from π
#tips #bypass #vpn -
Top #10 Tips Getting Started In Bug Bounty's (From Noob To Pro)
Watch this video to get started in bug bounty's novice to pro.
BE MY FRIEND:
π¦Add me on Twitter: https://twitter.com/z0idsec
ABOUT MY CHANNEL:
Krypt0mux Bug Bounty Tips
Support my work:
Join me on Patreon! https://www.patreon.com/krypt0mux
#bugbounty #tips #guide -
![Secondary Context Path Traversal [Pro Technique]](https://i1.wp.com/i.ytimg.com/vi/p3hzpo37yTc/sddefault.jpg?w=860&ssl=1)
Secondary Context Path Traversal [Pro Technique]
In this video, Iβll show you Attacking Secondary Contexts in Web Applications - Zoid. Enjoy!
β https://samcurry.net/hacking-starbucks/
β https://docs.google.com/presentation/d/1N9Ygrpg0Z-1GFDhLMiG3jJV6B_yGqBk8tuRWO1ZicV8/edit#slide=id.g71f4f9d057_1_63
β https://2018.zeronights.ru/wp-content/uploads/materials/20-Reverse-proxies-Inconsistency.pdf
β https://github.com/GrrrDog/weird_proxies/blob/master/Apache.md
BE MY FRIEND:
πAdd me on Facebook: https://www.facebook.com/krypt0muxbugbounty
π¦Add me on Twitter: https://www.twitter.com/z0idsec
πCheck my website / blog: https://krypt0mux.live
β GET A FREE!! $100 FOR DIGITAL OCEAN (VPS)
https://m.do.co/c/92568baf7849
ABOUT MY CHANNEL:
Krypt0mux Bug Bounty Tips
PS: Some of the links in this description are affiliate links that I get a kickback from π
#path #traversal #secondary #context -
#1 Tip: Setting up your own Bind9 Server (For Better Testing)!!!
In this video I will show you how you can setup your own OOB bind9 Server for SSRF & XSS bypasses.
See, a lot of the times you are restricted from using burp collab payloads or ngrok, so by watching this video and setting up your own bind9 you can own a domain like hacks.guru that points to your vps and this way it will bypass a lot of restrictions.
I hope you enjoy this video, please like comment & subscribe
#hacking #dns #oob #bind9
# Twitter
https://twitter.com/z0idsec
# Resources
https://medium.com/@spade.com/a-noob-guide-to-setup-your-own-oob-dns-server-870d9e05b54a
# Domain Setup
https://au.godaddy.com/
# Free $100 for digitalocean
https://m.do.co/c/92568baf7849
This will get you started for this video.