Bug Bounty Hunting Offensive Approach to Hunt Bugs

About Course

Website Hacking / Penetration Testing & Bug Bounty Hunting

Categories Hacking

Course Curriculum

Introduction

About Instructor

00:00
Course Introduction and Overview

00:00
Why you should take this

00:00
Teaser of Offensive Approach to Hunt Bugs

00:00

Information Gathering Basic Terminologies

Introduction of Burpsuite

Comprehensive XSS

Background Concept about XSS

00:00
Background-Concept-XSS

00:00
Basic XSS

00:00
Basic XSS on Lab

00:00
Manual Building XSS Vector

00:00
XSS through Filter Bypassed XSS payloads On Lab

00:00
XSS On Live Websites

00:00
XSS Hunting Live Part 1

00:00
XSS Hunting Live Part 2

00:00
XSS Hunting Live Part 3

00:00
XSS Through Header Parameter

00:00
Reflected XSS Vs Stored XSS

00:00
Exploitation of XSS – 1. URL Redirection

00:00
Exploitation of XSS – 2. Phishing Through XSS

00:00
Exploitation of XSS – 3. Cookie Stealing

00:00
XSS Through File Uploading

00:00
XSS Through Remote File Inclusion

00:00
Convert Self XSS to Reflected XSS

00:00
POC – 1 XSS Attack Discovered by Shubham Maheshwari

00:00
POC – 2 XSS Attack Discovered by Shubham Maheshwari

00:00
POC – 3 XSS Attack Discovered by Shubham Maheshwari

00:00
POC 4 XSS Attack Discovered by Ankit Singh

00:00
POC 5 XSS Attack Discovered by Ankit Singh

00:00
POC 6 XSS Attack Discovered by Ankit Singh

00:00
POC 7 XSS Attack Discovered by Ankit Singh

00:00
POC 8 XSS Attack Discovered by Ankit Singh

00:00

Host Header Injection

Overview of Host Header Injection

00:00
Host Header Attack 1. Open Redirection

00:00
Host Header Attack 2. Cache Poisoning

00:00
Host Header Attack 3. Password Reset Poisoning

00:00
Host Header Attack 4. XSS Through Host Header

00:00
POC – 1 Host Header attack by Shubham Maheshwari

00:00
POC – 2 Host Header Attack Discovered by Shubham Maheshwari

00:00
POC – 3 Host Header Attack Discovered by Shubham Maheshwari

00:00
POC -4 Host Header Attack Discovered by Shubham Maheshwari

00:00
POC – 5 Host Header Attack Discovered by Shubham Maheshwari

00:00
POC – 6 Host Header Attack Discovered by Shubham Maheshwari

00:00
POC – 7 Host Header Attack Discovered by Shubham Maheshwari

00:00

URL Redirection

Background Concept about URL Redirection

00:00
URL Redirection Through Get Parameter

00:00
URL Redirection Through Path Fragments

00:00
POC of URL Redirection 1

00:00
POC 3 Open Redirection Vulnerability Discovered by Shubham Maheshwari

00:00
POC 4 Open Redirection Vulnerability Discovered by Shubham Maheshwari

00:00
POC 5 Open Redirection Vulnerability Discovered by Shubham Maheshwari

00:00
POC 6 Open Redirection Vulnerability Discovered by Dawood Ansar

00:00

Parameter Tampering

HTML Injection

File Inclusion

Missinginsufficient SPF record

Background Concept about Missing insufficient SPF record

00:00
Testing SPF

00:00
Exploitation of SPF

00:00
POC 1 SPF

00:00
POC 2 – SPF Vulnerability Discovered by Shubham Maheshwari

00:00
POC 3 – SPF Vulnerability Discovered by Shubham Maheshwari

00:00
POC 4 – SPF Vulnerability Discovered by Shubham Maheshwari

00:00
POC 5 – SPF Vulnerability Discovered by Shubham Maheshwari

00:00

Insecure CORS Configuration

Server Side Request Forgery

Critical File Found

Source Code Disclosure

Hostile Subdomain Takeover

SQL Injection

Background Concept about SQL injection

00:00
SQL Injection Lab Setup

00:00
Injection Point for SQL Injection

00:00
Learn SQL Query Fixing

00:00
SQLI GET Based Part 1

00:00
SQLI GET Based Part 2

00:00
SQLI GET Based Part 3

00:00
Exploitation of GET Based SQLI

00:00
SQLI POST Based Part 1

00:00
Exploitation of POST Based SQLI

00:00
SQLI Header Based

00:00
Exploitation of Header Based SQLI

00:00
SQLI Cookie Based

00:00
WAF Bypassing for SQLI

00:00
Authentication Bypassing through SQLI

00:00
Automation of SQLI GET Based

00:00
Automation of SQLI Post Based Header Based and Cookie Based

00:00
Automation of SQLI Part 3 With WAF Bypassing

00:00
SQLI on Live Web 1

00:00
SQLI Live Bug Bounty Website

00:00
SQL Injection Live Website

00:00

Command Injection

File Uploading

XML External Entity Injection

€97.69

Course Details

Level: Intermediate

Duration: 0

Enrolled:0

Last Updated:February 13, 2022

Bug Bounty Hunting Offensive Approach to Hunt Bugs

About Course

Course Curriculum

Introduction

About Instructor

Course Introduction and Overview

Why you should take this

Teaser of Offensive Approach to Hunt Bugs

Information Gathering Basic Terminologies

Information Gathering

Introduction of Burpsuite

Steps to Configure Burpsuite with Firefox

How to Use Burpsuite – Spider Repeater Intruder

Comprehensive XSS

Background Concept about XSS

Background-Concept-XSS

Basic XSS

Basic XSS on Lab

Manual Building XSS Vector

XSS through Filter Bypassed XSS payloads On Lab

XSS On Live Websites

XSS Hunting Live Part 1

XSS Hunting Live Part 2

XSS Hunting Live Part 3

XSS Through Header Parameter

Reflected XSS Vs Stored XSS

Exploitation of XSS – 1. URL Redirection

Exploitation of XSS – 2. Phishing Through XSS

Exploitation of XSS – 3. Cookie Stealing

XSS Through File Uploading

XSS Through Remote File Inclusion

Convert Self XSS to Reflected XSS

POC – 1 XSS Attack Discovered by Shubham Maheshwari

POC – 2 XSS Attack Discovered by Shubham Maheshwari

POC – 3 XSS Attack Discovered by Shubham Maheshwari

POC 4 XSS Attack Discovered by Ankit Singh

POC 5 XSS Attack Discovered by Ankit Singh

POC 6 XSS Attack Discovered by Ankit Singh

POC 7 XSS Attack Discovered by Ankit Singh

POC 8 XSS Attack Discovered by Ankit Singh

Host Header Injection

Overview of Host Header Injection

Host Header Attack 1. Open Redirection

Host Header Attack 2. Cache Poisoning

Host Header Attack 3. Password Reset Poisoning

Host Header Attack 4. XSS Through Host Header

POC – 1 Host Header attack by Shubham Maheshwari

POC – 2 Host Header Attack Discovered by Shubham Maheshwari

POC – 3 Host Header Attack Discovered by Shubham Maheshwari

POC -4 Host Header Attack Discovered by Shubham Maheshwari

POC – 5 Host Header Attack Discovered by Shubham Maheshwari

POC – 6 Host Header Attack Discovered by Shubham Maheshwari

POC – 7 Host Header Attack Discovered by Shubham Maheshwari

URL Redirection

Background Concept about URL Redirection

URL Redirection Through Get Parameter

URL Redirection Through Path Fragments

POC of URL Redirection 1

POC 3 Open Redirection Vulnerability Discovered by Shubham Maheshwari

POC 4 Open Redirection Vulnerability Discovered by Shubham Maheshwari

POC 5 Open Redirection Vulnerability Discovered by Shubham Maheshwari

POC 6 Open Redirection Vulnerability Discovered by Dawood Ansar

Parameter Tampering

Background Concept about Parameter Tampering

Parameter Tampering – Example 1

Parameter Tampering – Example 2

Parameter Tampering – Example 3

Parameter Tampering – Example 4

Parameter Tampering – Example 5

HTML Injection

Background Concept about HTML Injection

Background-HTMLI

HTML Injection Finding – Example1

HTML Injection Finding – Example2

HTML Injection Finding – Example3

File Inclusion

Background Concept about File Inclusion

LFI Vs RFI

LFI Hunting Part 1

LFI Hunting Part 2