วีดีโอ

that monitor bend on shubs pov makes me wonder if he tilts his chair when he gets bored or gets really tired looking at the source code and debugging it all day or is it just a preference thing?

You all are amazing

Every ep I watch, I have more questions than answers

With automation is possible to find impactful bugs🎉

Thanks for the video @Assetnote team. The wildcard DNS record issue is a very common yet important issue which is still unexplored by the security community. I was wondering how ASM companies that deal with multiple clients and run discovery scans on hourly basis solve this problem. In theory, there are couple of ways such as distinction between DNS records, response hash (in case fake subdomains respond with a web page) to filter out the fake subdomains but they never work in practical. Can you please shed some light on what are current good ways of atleast minimizing the number of fake subdomains and how companies in ASM market are doing this on scale?

Keep up the good work from Melbourne

This resonates with the recent CUPS vulnerabilities. Not that they weren't serious, but it seemed beforehand they were marketed like a 0-click rce on all Linux platforms

I think the comments misunderstand what these videos are for. They're opening discussion and centering it around the difference their product can make. They're not trying to secure you bug bounties.

Post videos by doing practically

I see Shubs I click

More on this guys

:)

Guys this content is amazing, no doubt in that, but the audience will appreciate and benefit more from something practical like to show us the recon process and methods and other tricks you guys use when doing recon.

Great input sharing..thanks!

Thanks ❤for amazing talk

Thankyou for these would really love if you can add getting into source code analysis into your videos list

Doing a CONNECTIVITY TEST on a Chromebook... Message recieved... CANT RESOLVE DNS FROM ANDROID APPS What do I need to do to fix this?.

Thanks ❤

Great talk from Shubs. Thank you

Awesome video Team💙

Congratulations! 🎉🎉

legend

Awesome content as always. where do you post questions?

Incredible work Adam!

Thanks for sharing!

Useful - new learning - nmap scan can lead to open port exploit - bug bounty

Thank you for sharing your knowlage!

The server status endpoint mentioned at 2:05, can anyone tell me what does it means ..like what kind of endpoints is it referring to?

Awesome <3

Your content is great, hope to get notification that u are back with new video 😅❤️

For some reason I am happy these videos are not seen enough

Dear Sir, Please do cover these crucial topics also. Like... How to bypass Drupal CMS How to bypass WAF protection that stops HTML, SQL, and XSS injection payloads? How to find the real origin IP of secured websites behind Cloudflare, Akamai, ModSecurity, AWS CDN, etc. How to bypass WAF using SQLMAP How to find hidden vulnerable parameters and endpoints inside the.js files? How to find hidden admin panels & cPanel and WHM panels. Please cover these important topics. Thanks

Awesome ^ ^

thx and subscribed

Thx

May God bless you with the happiness that you have been giving us since you were born. Happy birthday!

I did

Its worked MACos?

TNice tutorials was for 2 years

Nice

😂😂loved the pentesterlab code in frames

😍

1st viewer❤️❤️

Your videos are very informative and I really appreciate the way you're presenting each topic. It's great that you keep them short. Well done!

Lovely

Won't you cover your recent vulns?

Was the JWT bug vulnerable only to that particular coupon page? Or was it affecting all the functionalities of the app, like for example, no proper JWT validation in user email changing function as well?

Is this s3 bucket misconfiguration vulnerability still relevant in 2022? I see no recent HackerOne reports in the hacktivity section. Hoping to receive your opinion on this. Great video btw.

Thank you for another great video!