Hey everyone! I hope you all are doing good and hunting bugs. In this article, we are going to learn how to find hidden parameters in web application. I am actually not very active on Medium because me and my friend were creating a platform which aims to provide cybersecurity…

This article was originally published on BePractical Want to know the best way to learn bug bounty hunting? Here are 5 bug bounty books for beginners that you should read! FIRST TIME VISITED OUR WEBSITE???? If yes, then you are missing a lot! We are providing free cybersecurity & web…

INTRODUCTION Hi everyone! I hope you all are doing good and I’m so sorry for posting article after a very long time. Before we dive deep in this article, Let me ask you a question, Have you ever tried to find a blind xss while doing bug bounty? …

This article was originally published at BePractical INTRODUCTION A lot of bug bounty hunters usually just reports the vulnerability that they found directly to the program without understanding the impact of it. Although this is completely fine, but sometimes it restricts you to get the bounty you deserve. For example, If…

This article was originally published at BePractical INTRODUCTION Do you know that you can earn up to $1000 by finding open redirect vulnerabilities? Well, it turns out that most people underestimate open redirect vulnerabilities because of its nature. For those who doesn’t know about open redirect vulnerability, It is a web…

This article was originally published at BePractical Learn everything about dns spoof attack from basics to advanced INTRODUCTION Hi everyone! Suppose you are in your WiFi network and trying to book a movie ticket online. You opened the website there is no sign of phishing and everything seems nice. You buy…

This article was originally posted on bepractical.tech INTRODUCTION Hi everyone! In this article, you will learn about how to craft blind xss payloads to get yourself bounties. Before we dive deep in this article, let us first learn about some few things: What is XSS(Cross Site Scripting)? In simple terms, It…

INTRODUCTION Hey everyone! Do you want to learn all about account takeover from scratch? If yes, then welcome to this amazing course “The Ultimate Guide to Hunt Account Takeover” that will teach you everything from basic to advance. Curriculum

Introduction Hi everyone, In this article I am going to show you how i got google’s hall of fame by finding security vulnerability in one of their acquisition. So, let’s get started!