Scanning All Vulnerability Disclosure Programs For Automated API Hacking
Вставка
- Опубліковано 18 вер 2024
- LIKE and SUBSCRIBE with NOTIFICATIONS ON if you enjoyed the video! 👍
📚 If you want to learn bug bounty hunting from me: bugbounty.naha...
💻 If you want to practice some of my free labs and challenges: app.hackinghub.io
💵 FREE $200 DigitalOcean Credit:
m.do.co/c/3236...
🔗 LINKS:
📖 MY FAVORITE BOOKS:
Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities -amzn.to/3Re8Pa2
Hacking APIs: Breaking Web Application Programming Interfaces - amzn.to/45g4bOr
Black Hat GraphQL: Attacking Next Generation APIs - amzn.to/455F9l3
🍿 WATCH NEXT:
If I Started Bug Bounty Hunting in 2024, I'd Do this - • If I Started Bug Bount...
2023 How to Bug Bounty - • How to Bug Bounty in 2023
Bug Bounty Hunting Full Time - youtu.be/watch...
Hacking An Online Casino - youtu.be/watch...
WebApp Pentesting/Hacking Roadmap - youtu.be/watch...
MY OTHER SOCIALS:
🌍 My website - www.nahamsec.com/
👨💻 My free labs - app.hackinghub...
🐦 Twitter - / nahamsec
📸 Instagram - / nahamsec
👨💻 Linkedin - / nahamsec
WHO AM I?
If we haven't met before, hey 👋! I'm Ben, most people online know me online as NahamSec. I'm a hacker turned content creator. Through my videos on this channel, I share my experience as a top hacker and bug bounty hunter to help you become a better and more efficient hacker.
FYI: Some of the links I have in the description are affiliate links that I get a a percentage from.
📚Get my bug bounty course here for $35 using NAHOMIE35 👉🏼 bugbounty.nahamsec.training
🧑🏽💻Subdomains from my scans: gist.github.com/nahamsec/a0d01d9f6b89b32a68e7b26c74be691d
🔗Join Discord: discord.gg/nahamsec
Something i'd love to see, is a neat tutorial on hostng a website. Maybe hosting multiple websites in one single hosting plan. Maybe spin up dockers and have multiple subdomains differentiating which website you'll be using c: Think it could be quite awesome as you'll learn a lot in the process and it's budget friendly! One might be a file hosting webserver, another might be stormbreaker (on github), and more. I do loads of hacking, and i've just recently started "hosting". But i want to learn more :P
fiz uma divisão de tempo, 70% caçando e 30% estudando, não sei se estou no caminho certo, mas desistir não é uma opção!!!
Volume could be louder
It's good on my end
Also record a series on how to setup your own automation using multiple vps hostings
I love the Arabic writing on your shirt man, it's fire. Where can I get one from?
Hey bro,
Just FYI your twitch link is missing a "t"
looking forward to the next stream :)
Thanks For Sharing NahamSec
Depending of the API and we can do what QA does. I can write tests with cypress to get all the results from the API
but , how could you scan all of these domains for swagger paths , using ffuf or what ?
How can you found api endpoints?
Naham, cara eu to muito devagar na caça por bugs, estudo direto sobre API's mas sinto que estou enxugando gelo, isso é normal, ou não?
the shirt is FIRE bro, love it
good info
ماهان جان لطفا جواب بده
TYPE SHII
Make video about the sudomy tool