My #BugBounty tools 🤘 👉xnLinkFinder - get links, params & target wordlist 👉waymore - get URLs & archived responses 👉GAP - Burp ext. like xnLinkFinder 👉urless - de-clutter URL list 👉knoxnl - wrapper for KNOXSS API 👉 Xnl Reveal - BB Chrome Extension https://t.co/o97XWDJjne

Our FREE Modern Recon Workshop is coming up! https://t.co/SXD5b30kQm We also want to thank our sponsor for this webinar @PlexTrac ! PlexTrac unifies and streamlines pentesting operations through a continuous, workflow-driven approach that brings pentest data directly into the

v7.0 of waymore is available: ✅ Get URLs 2-4x faster in mode U ✅ Download responses upto 2x faster in mode R 🩹 Many bug fixes 👉 See CHANGELOG for all details 👉 Update with "pip install --upgrade waymore" https://t.co/Olv7lLQtha #BugBounty 🤘

Wayback machine is currently broken and bringing back a mix of responses: 504 Gateway Time-out & 503 Service Unavailable 😢 I knew it was down though because the Xnl Reveal browser extension shows the icon with a red background, which is a feature I find useful

I listened to less music than last year. Kinda annoyed about that 😂

Obviously you don't need to use a VPN if Common Crawl hasn't blocked you yet, but if you start seeing errors like: CommonCrawl - [ ERR ] Connection error for index... then you're getting blocked by IP :( I also reboot my router to get a new IP instead, if running locally

And DON'T use a VPN if you want full results from Wayback machine and get them quicker. This is especially the case for mode R downloading responses So you can use --providers to run separately for different sources. #BugBounty 🤘

🛠️ waymore: Tip #11 📝 Using a VPN can mean getting URLs from Common Crawl when otherwise you may be blocked, but a VPN can make Wayback rate limit you So, DO use a VPN for Common Crawl and use --limit 0 to check ALL indexes You can use --providers commoncrawl ...

Did you see BugBountyDaily got a "Ask AI" feature now? The best part is that it makes a proxy and uses your Gemini tokens, not mine (it's free). I had no idea we could do that. Note: since I didn't scrape the posts' content or descriptions, it may have a few misses :)

Just a yearly reminder... The wayback machine internet archives are a goldmine for bug hunters which we all take for granted. Imagine it just went offline for good!... Scary 😱 So if it's helped you find bugs, consider donating to this nonprofit https://t.co/cEnBk1gCIg #BugBounty

A new version of waymore is coming soon where it will be 2-4x faster getting URLs with mode U and 2x faster downloading responses with mode R https://t.co/Olv7lLQtha #BugBounty 🤘

I know there is still no @CaidoIO version of GAP, but if you really want all the functionality of GAP, you can save the Caido history and pass the CSV to xnLinkFinder! See https://t.co/h9U0XIRqaS for more. #BugBounty 🤘

If you need to generate a target-specific wordlist, make sure to check out @xnl_h4ck3r GAP extension. It will scan for sus parameters and generate you a complete wordlist with one click of a button. See it in action 👇

Will I see any of you there? 👇

As a bonus we added the JS Analysis section from TBHM Core to the expansion too, in case you didn't have it yet! It includes advanced techniques for parsing secrets, endpoints, and useful data for bug hunting! https://t.co/8VTCHCDLhM

TBHM Expansion - Bug Chaining, Escalation, and Advanced Client-Side is now live! Come catch @xssdoctor give his masterclass! https://t.co/8VTCHCDLhM

For the past 3 months I worked really hard with @Jhaddix to make a course on client side exploitation. I think it turned out really well, and It’s finally live! I hope you guys like it https://t.co/n7lMbavc8m

We got some FANTASTIC feedback from this cohort of Attacking AI! - We added several more PI Techniques and Evasions - We added sections on understanding and attacking ecosystems like OpenAI and Microsoft - We upped the defense section a lot I'm so excited! Working on two more

High Signal #01: postMessage, pre-auth RCE, and Gemini hacks

@tabaahi_ @NahamSec @arshadkazmi42 @bug_vs_me @coffinxp7 @TeslaTheGod @HarshDRanjan1 @ThisIsDK999 @h4x0r_dz @PhilippeDelteil @Nouureldin_Ehab @h4x0r_fr34k @GodfatherOrwa @hxp7th @galnagli @ReebootToInit5 are specific GPTs that can be even more useful and specific to bug bounty. A good example is Jason Haddix's Arcanum Cyber Security Bot: https://t.co/OBR5J8CUFr Good luck hunting!

@tabaahi_ @NahamSec @arshadkazmi42 @bug_vs_me @coffinxp7 @TeslaTheGod @HarshDRanjan1 @ThisIsDK999 @h4x0r_dz @PhilippeDelteil @Nouureldin_Ehab @h4x0r_fr34k @GodfatherOrwa @hxp7th @galnagli @ReebootToInit5 then by all means reach out to someone for help. There are many discord servers with many people wiling to help if you post a question. Here are some good ones: https://t.co/u0NYogUHg4 https://t.co/yO354gthiv https://t.co/3DuDxyEUWP Also, asking AI is always useful but there