- 42
- 46 999
Brut Security
India
เข้าร่วมเมื่อ 17 เม.ย. 2018
Illusion !
CVE-2024-4879 | Template Injection Vulnerability in ServiceNow | Bug Bounty POC | Brut Security
🚨CVE-2024-4879 & CVE-2024-5217: ServiceNow Security Vulnerabilities Expose Businesses to RCE and Data Breaches
⚖These vulnerabilities enable unauthenticated remote attackers to execute arbitrary code within the Now Platform,
potentially leading to complete system compromise, data theft, and disruption of critical business operations.
👇Search Query
Hunter:/product.name="ServiceNow"
FOFA: app="servicenow-Products"
SHODAN: Server: ServiceNow
㊙For Nuclei Template Join Telegram: t.me/brutsecurity
⚖These vulnerabilities enable unauthenticated remote attackers to execute arbitrary code within the Now Platform,
potentially leading to complete system compromise, data theft, and disruption of critical business operations.
👇Search Query
Hunter:/product.name="ServiceNow"
FOFA: app="servicenow-Products"
SHODAN: Server: ServiceNow
㊙For Nuclei Template Join Telegram: t.me/brutsecurity
มุมมอง: 950
วีดีโอ
Subprober - Probing Tool for Penetration Tester | Bug Bounty POC | Brut Security
มุมมอง 25814 วันที่ผ่านมา
🚨Subprober - An essential HTTP multi-purpose Probing Tool for Penetration Testers and Security Researchers with Asynchronous httpx client support. 📝Features: Fast and configurable probings Supported Inputs: hosts, URLS, IPs Supports multiple methods http requests Supports proxies and customizable Header for probing Progress your probing tasks 📢Features in V2.0.0: New Probing configurations http...
Unauthenticated Magento XXE to Path traversal | CVE-2024-34102 | Bug Bounty POC
มุมมอง 83021 วันที่ผ่านมา
🔥Magento XXE CVE-2024-34102: A newly discovered vulnerability dubbed “CosmicSting” jeopardizes millions of online stores built on Adobe Commerce and Magento platforms. ⚠️CosmicSting enables attackers to gain unauthorized access to sensitive files, including those containing passwords. When combined with a recent Linux bug (CVE-2024-2961),the vulnerability can be escalated to remote code executi...
🚨Unauthenticated Magento XXE | CVE-2024-34102 | Bug Bounty POC | Brut Security
มุมมอง 1K21 วันที่ผ่านมา
🚨Magento XXE CVE-2024-34102: A newly discovered vulnerability dubbed “CosmicSting” jeopardizes millions of online stores built on Adobe Commerce and Magento platforms. ⚠CosmicSting enables attackers to gain unauthorized access to sensitive files, including those containing passwords. When combined with a recent Linux bug (CVE-2024-2961), the vulnerability can be escalated to remote code executi...
🚨 CVE-2024-29973 | Unauthorized command injection in Zyxel NAS devices | Brut Security #shorts
มุมมอง 221หลายเดือนก่อน
🚨CVE-2024-29973: Unauthorized command injection in Zyxel NAS devices! 👉This command injection vulnerability in the “setCookie” parameter in Zyxel NAS326 and NAS542 devices could allow an unauthenticated attacker to execute some OS commands by sending a crafted HTTP POST request. 💥PoC: lnkd.in/gKAJb2Ta 💥Dorks: Hunter: product.name="ZyXEL NAS542"||product.name="ZyXEL NAS326" FOFA: app="NAS542" ||...
Find Hidden Subdomains & IPs | RSEScan | RSECloud | Bug Bounty Recon | Brut Security
มุมมอง 458หลายเดือนก่อน
📢RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a given domain or organization. 🚨 Registration Open for July 1st Batch: Extreme Web Application Penetration Testing 🚨 ☎️Registration Link: wa.me/message/NQLPOBIAEFDBN1 💥Got Questions? Feel free to DM your queries on our WhatsApp: Chat with Us wa.me/918945971332 📝...
CVE-2024-27348 | RCE in Apache HugeGraph-Server | Bug Bounty POC | Brut Security
มุมมอง 506หลายเดือนก่อน
🚨CVE-2024-27348: RCE in Apache HugeGraph-Server.This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.3.0 in Java8 & Java11 Users are recommended to upgrade to version 1.3.0 with Java11 & enable the Auth system, which fixes the issue. 📢Remedy: Upgrade to version 1.3.0 to mitigate. 😉Payload: Join Telegram to Download: t.me/brutsecurity 🔗POC: github.com/Zeyad-Azima/CVE-2024-27348 👉Dorks...
এথিকাল হ্যাকিং ডেমো এবং ক্যারিয়ার গাইড | Ethical Hacking Demo & Career Guide | Brut Security
มุมมอง 91หลายเดือนก่อน
এই ভিডিওটিতে, এথিক্যাল হ্যাকিং এর কথা বলা হয়েছে এবং এটি কীভাবে একটি লাভজনক ক্যারিয়ারের পথ হতে পারে তা দেখানো হয়েছে (This video talks about ethical hacking and how it can be a rewarding career path). ভিডিওটিতে বিভিন্ন ধরণের হ্যাকারদের কথা বলা হয়েছে, যেমন হোয়াইট হ্যাট, ব্ল্যাক হ্যাট এবং গ্রে হ্যাট হ্যাকার (The video discusses different types of hackers, like white hat, black hat, and gray ha...
Reflected XSS POC | XSS Image Injection | Bug Bounty Live Class | Brut Security
มุมมอง 2122 หลายเดือนก่อน
🚨The input is an example of an XSS (Cross-Site Scripting) image injection attack. The attacker injects a malicious image tag into the website, which can lead to the execution of arbitrary JavaScript code. This can result in sensitive data theft, session hijacking, or even complete takeover of the user's session. 📢Impact: Steal user data (e.g., credentials, credit card numbers) Take control of t...
XSS Via Uploading PDF File | CVE-2024-4367 | Arbitrary JS execution in PDF.js | Brut Security
มุมมอง 6732 หลายเดือนก่อน
🚨If pdf.js is used to load a malicious PDF, and PDF.js is configured with isEvalSupported set to true (which is the default value), unrestricted attacker-controlled JavaScript will be executed in the context of the hosting domain. 🔗PDF XSS Payload- github.com/LOURC0D3/CVE-2024-4367-PoC 📢For Live Class Enrollment DM in Whatsapp- wa.me/918945971332 📝Join Our Telegram- t.me/brutsecurity
Bug Bounty Live Class | Bug Bounty Automation & Recon | Enroll Now https://wa.me/918945971332
มุมมอง 1.8K2 หลายเดือนก่อน
Bug Bounty Live Class | Bug Bounty Automation & Recon | Enroll Now wa.me/918945971332
Bug Bounty Live Class | Live Hunting | Enroll Now in WhatsApp +918945971332
มุมมอง 4313 หลายเดือนก่อน
Bug Bounty Live Class | Live Hunting | Enroll Now in WhatsApp 918945971332
Drupal: CVE-2018-7600: Remote Code Execution | Brut Security
มุมมอง 1214 หลายเดือนก่อน
Drupal: CVE-2018-7600: Remote Code Execution | Brut Security
WebLogic Server Unauthenticated RCE via GET request | CVE 2020-14882 | Brut Security
มุมมอง 634 หลายเดือนก่อน
WebLogic Server Unauthenticated RCE via GET request | CVE 2020-14882 | Brut Security
#4 User Enumeration Through Forget Password | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
มุมมอง 327ปีที่แล้ว
#4 User Enumeration Through Forget Password | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
#3 Account Takeover | 2FA Bypass | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
มุมมอง 481ปีที่แล้ว
#3 Account Takeover | 2FA Bypass | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
#2 OTP Bypass | Response Manipulation | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
มุมมอง 229ปีที่แล้ว
#2 OTP Bypass | Response Manipulation | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
#1 Password Bypass | Response Manipulation | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
มุมมอง 172ปีที่แล้ว
#1 Password Bypass | Response Manipulation | Bug Bounty POC | CyberTron | #bugbounty #cybersecurity
Uploading Malwares in Computer - Hacker Simulator - Part 3
มุมมอง 1752 ปีที่แล้ว
Uploading Malwares in Computer - Hacker Simulator - Part 3
How to Hack Computers with a SMB Exploit - Hacker Simulator - Part 2
มุมมอง 3222 ปีที่แล้ว
How to Hack Computers with a SMB Exploit - Hacker Simulator - Part 2
Nuclei Installation | Bug Bounty | I'm Yodhha #1
มุมมอง 5643 ปีที่แล้ว
Nuclei Installation | Bug Bounty | I'm Yodhha #1
How to Switch Back to Classic Facebook 2020 | Switch to Old Facebook
มุมมอง 1393 ปีที่แล้ว
How to Switch Back to Classic Facebook 2020 | Switch to Old Facebook
How to Unlock Medium Premium Article For Free | Medium Unlimited | 2020 Latest Update
มุมมอง 1.4K4 ปีที่แล้ว
How to Unlock Medium Premium Article For Free | Medium Unlimited | 2020 Latest Update
The Hackers Meetup | XXE | Buffer Overflow | Android Pentesting | Thick Client Application Security
มุมมอง 2K4 ปีที่แล้ว
The Hackers Meetup | XXE | Buffer Overflow | Android Pentesting | Thick Client Application Security
[𝓢𝔀𝓮𝓮𝓽𝓕𝓸𝔁] CTF Solution | PwnVilla ! | Pentest Ops !
มุมมอง 514 ปีที่แล้ว
[𝓢𝔀𝓮𝓮𝓽𝓕𝓸𝔁] CTF Solution | PwnVilla ! | Pentest Ops !
Is it possible to hack any Computer or Phone via URL? | Android Hacking | PC Hacking !
มุมมอง 2734 ปีที่แล้ว
Is it possible to hack any Computer or Phone via URL? | Android Hacking | PC Hacking !
Microsoft CTF! Solution | PwnVilla ! | Pentest Ops !
มุมมอง 654 ปีที่แล้ว
Microsoft CTF! Solution | PwnVilla ! | Pentest Ops !
2 - bWAPP Tutorials - HTML Injection - ReflectedPOST | H4K-XTRA
มุมมอง 1046 ปีที่แล้ว
2 - bWAPP Tutorials - HTML Injection - ReflectedPOST | H4K-XTRA
1 - bWAPP Tutorials - HTML Injection - ReflectedGET (Medium Security) | H4K-XTRA| H4K-XTRA
มุมมอง 1916 ปีที่แล้ว
1 - bWAPP Tutorials - HTML Injection - ReflectedGET (Medium Security) | H4K-XTRA| H4K-XTRA
1 - bWAPP Tutorials - HTML Injection - ReflectedGET | H4K-XTRA
มุมมอง 776 ปีที่แล้ว
1 - bWAPP Tutorials - HTML Injection - ReflectedGET | H4K-XTRA
Brother how to get bounty 😢 ....
Can we get RCE Via Terminal with this Failure?
no real tip just what was in the assetnote post next time show some steps to perform full exploit on dummy server wink wink
Check The Repo
Hello sir, can u share obsidian file?
Where's the privesc part ?
Tnx bro❤
You can't record notepad without playing Trance 009 Dreamscape. Massive missed opportunity
There is a mute button ⛄️
This Is Song?
if you think so.
If you meant to ask what song it was , its kerosene slowed
poc: t.me/brutsecurity/590
Brabo!
Really thanks bro ;)
Join Telegram To Download: t.me/brutsecurity/540
Hi, How do extract the ip from shodan!?
it is netlas not shodan
Well, the information you may find usable is bcrypted so dunno if it's practial
Why make shorts and give this information to the public. What is your goal here?
Can you access to javascript Dom? Can you access to cookies alert(document.cookie) ?
yes
@@brutsecurity how? I found the same xss with pdf but i cant use document.cookie Give me a poc
@@NoufelBoOum check the description it's already there
ভর্তির জন্য যোগাযোগ করুন : wa.me/918945971332 For admission contact us : wa.me/918945971332
Can you share more details
check description!
Hello sir, can u share obsidian file?
i want thse checklist sir
Gn, how can I get your checklist?
Can you make a video on how games get hacked and updated to the hacked version, for example a famous vr game called trash runners was hacked and updated to the hacked version
W video
"feel the power of indians"🤣🤣
Cope harder 😂
@@pro-gram define cope you punjabi
@@RATUSUKUNA stfu nigga where are you even from Pakistan
Oke mantap 👍👍👍
Ee shahboz nima qildiz
What if it shows success on response manipulation but the server didn't make any difference or changes
check if it reflecting on UI response, you can report UI render issue, but it won't be accepted
Tylko nie pomyl programów
jeśli wprowadzanie zamieszania w aplikacji czyni ją podatną na ataki, to dlaczego nie?
@@brutsecurity zależy do czego to pszerabiasz A pozatym umiesz polski?
any bounty
no, they got raided by ED & CBI for money laundering
@@brutsecurity 😃😃
intro kaha se banaya bhai
adobe
Can I join to your ORG?
Js extension is not chowing in tool hackbar
Hello,how can i communicate with you? It's urgent please.
Bro Give me Defacing code
It isn't defacing code, it's website code, he just quickly made a website, so basically what shows when you go on the website, I can write a simple code for you <!DOCTYPE HTML> <HTML> <title>you have been hacked</title> </HTML>
BRO CAN YOU PLEASE SHARE THE HACKBAR EXTENSION FILE PLSSSSSSSSSSSSSSSSS
how did you know here to upload the file to in the terminal?
good job
Thanks for recording the video in 8K
Its just 360p !
Could you deface a pedo community on clear web? My mail at the end of this video th-cam.com/video/bRLilBN9HjQ/w-d-xo.html
Which os u r using bro
it's a game called "hacker simulator "
Thanks bro
Video was good.. Just try creating explainer videos with your voice in it. Would be more satisfactory and knowledgeable.
Awesome bro
thx lol I hack 50 website thx a lot
Ngl that’s a little illegal gotta tell the cops
Ethically?
Thank you so much kitne dino se me aisi video search kr rahi thi jissme simply way se bataya ho install krna . thank u sir
bro can i copy your vid
It works :) thank you so much.
A great and trusted cyber also reliable Fastest and ligit #Perfect_hacker100
bro kya aap instagram par ho....i want to contact u....mein facebook nahi chalata....mujhe ye puchan h ki kya mein flipkart se free mein saman manga sakta hun is trick se...pakda to nahi jaunga...pata chala ki kal jail mein baitha hun....please reply karna jaldi...ya phir insta par mujhe reply kar dena...therock.47 my insta id
Hello bhai what's ur insta id
How to download this app