Hi there ;) Thanks for watching and welcome to the comment section! Sign up here and get the best hacking info delivered right to your inbox: mailing.bugbountyexplained.com/
Another great video! Extremely well explained as always. Really shows the importance of fully getting to know any frameworks/services used on your target
I have analyzed these RCE vulnerabilities in Lucee and I think they are not so hard to understand and found, but what I wonder more is how these guys identify Apple using Lucee and there is Mura/Masa CMS deployed on top of Lucee by Apple, and it’s more important for me, so do you have any ideas about it?
They just encountered a host in Apple's domain and then identifying an open-source CMS used is easy. The software name will usually be in an HTTP header or an HTML body.
@@BugBountyReportsExplained All right. but now, maybe Apple has harden those websites for security, I try to find some Lucee related fingerprint from those websites but nothing.
as always great video with absolutely mind blowing researches 👌. but I have a question, a lot of the webapp bugs that you share seem to use a lot of uncommon protocols, uncommon files and extensions that are generally not discussed pretty often. so is there resources that combine those concepts that the hunters use or they just read through the documentations (which I believe takes a lot of time compared to how quickly they disclose the bugs)
Thanks. Regarding reading, I can only say for myself. I usually learn just in time, when I have a problem to solve. Worth noting that when you want to find a new bug, most of time spent for learning you learn something that will not work. Things that work are just a part.
@@BugBountyReportsExplained oh so those hunters actually learn while they are investigating a potential bug. I my self did some penetration testing on a live web app and found some bugs and learned the bare metal stuff while exploiting them. But man those hunters sure look for the slightest details I guess 😅. Thanks man and keep giving us your amazing work 👌
It's not written in this writeup but I think with Apple waiting a year for a payout is nothing extraordinary. Not the program you want to be on if you need the money in forseeable future
I guess you are looking for this github.com/lucee/Lucee (thats the open-source lucee github repor) as explained in the video, the testers downloaded a copy of lucee and tested in the local instance. then they replayed those attacks on Apple server. Feel free to correct me if I am wrong :)
As mentioned above, it's open source. Those screens from localhost were from me and I used these commands to host it: docker pull lucee/lucee:5.3.5.92-nginx docker run --rm --name lucee -p 8888:8888 lucee/lucee:5.3.5.92-nginx
@@BugBountyReportsExplained some books or posts with advanced ideologys and ways. You are right sir there is no better way other then videos, but in videos we just have to grab instructor's ideology and i want to develop mine, so if you can help it'll be great sir.
@@saranshsarafmr23r06 zseano has recently made his book about his methodology free. I didn't see it yet, but I watched a few of his videos and talks and I really liked them.
Hi bro What u prefer for beginner bug hunters how find bugs securely and easy understanding Make a video abt that And Make one more is I looking some of xss bug finding videos I didn't understanding So explain about How find xss bug Which tool is used And there types like 1.Reflected 2.stored 3.dom P L S MAKE A VIDEO ABOUT THAT 👆 👆👆 👆
@@BugBountyReportsExplained kk bro Kindly give me a safety instructions to beginner for finding bug Give some examples of simple bugs to achieve beginners goals Hlp me bro 👆👆👆👆👆
Hi there ;) Thanks for watching and welcome to the comment section!
Sign up here and get the best hacking info delivered right to your inbox: mailing.bugbountyexplained.com/
I’m not a hacker nor a security researcher but just $50,000 for a zero day exploit is so cheap coming from Apple.
like you said you are neither hacker nor security researcher so that's why you don't know how miser Apple is when it comes to bug bounties 😂😅
Dude, I *just* read a writeup of this earlier today. Awesome you made a video about it, it truly did help me understand it more! Great explanations!
Awesome to hear it!
Another great video! Extremely well explained as always. Really shows the importance of fully getting to know any frameworks/services used on your target
Amazing explanation 🔥
Thanks for Clear explanation
I have analyzed these RCE vulnerabilities in Lucee and I think they are not so hard to understand and found, but what I wonder more is how these guys identify Apple using Lucee and there is Mura/Masa CMS deployed on top of Lucee by Apple, and it’s more important for me, so do you have any ideas about it?
They just encountered a host in Apple's domain and then identifying an open-source CMS used is easy. The software name will usually be in an HTTP header or an HTML body.
@@BugBountyReportsExplained All right. but now, maybe Apple has harden those websites for security, I try to find some Lucee related fingerprint from those websites but nothing.
as always great video with absolutely mind blowing researches 👌. but I have a question, a lot of the webapp bugs that you share seem to use a lot of uncommon protocols, uncommon files and extensions that are generally not discussed pretty often. so is there resources that combine those concepts that the hunters use or they just read through the documentations (which I believe takes a lot of time compared to how quickly they disclose the bugs)
Thanks. Regarding reading, I can only say for myself. I usually learn just in time, when I have a problem to solve. Worth noting that when you want to find a new bug, most of time spent for learning you learn something that will not work. Things that work are just a part.
@@BugBountyReportsExplained oh so those hunters actually learn while they are investigating a potential bug. I my self did some penetration testing on a live web app and found some bugs and learned the bare metal stuff while exploiting them. But man those hunters sure look for the slightest details I guess 😅. Thanks man and keep giving us your amazing work 👌
@@ahmadshami5847 yeah, bounties are all about diving deep into the application while pentest is more about breadth
@@BugBountyReportsExplained yup that's true. All I need is time I guess. thanks a lot man, keep up the great work 👌👌
Thank you very much for your detailed explanation.
You are the best my dude! ✌️
Always watching your videos ❤
Quality content! ❤️
Let's Gooooo Nice 👌
hey bro please. tell me how long the bug is reported, until you get paid ??
It's not written in this writeup but I think with Apple waiting a year for a payout is nothing extraordinary. Not the program you want to be on if you need the money in forseeable future
Bro where to find that Codings which they found vulnerable????
Use burpsuite pro
@@bangunwismoyo1294 But i didn't found the Codings which they found Vulnerable.... I just revisited the site
@@oo7posam581 Im not sure what do you mean by "Codings"
@@BugBountyReportsExplained Sir that Codings u displayed which were Vulnerable.... Where to find such Codings except Html one's
I guess you are looking for this github.com/lucee/Lucee (thats the open-source lucee github repor) as explained in the video, the testers downloaded a copy of lucee and tested in the local instance. then they replayed those attacks on Apple server.
Feel free to correct me if I am wrong :)
Nicely explained.
I'm beginners one dought how they hosted in localhost how they got code can u explain that love from india
Because lucee is opensource. Everyone can download it and run in localhost.
As mentioned above, it's open source. Those screens from localhost were from me and I used these commands to host it:
docker pull lucee/lucee:5.3.5.92-nginx
docker run --rm --name lucee -p 8888:8888 lucee/lucee:5.3.5.92-nginx
hmm I think it's really bad.. it's been two months but he still fix it.. ok thanks bro.
Amazing ❤️🔥
Good bro
Great
Sir can you please share some resources to us so we can grow our poor hunting🙏
What resources other than videos do you mean?
@@BugBountyReportsExplained some books or posts with advanced ideologys and ways.
You are right sir there is no better way other then videos, but in videos we just have to grab instructor's ideology and i want to develop mine, so if you can help it'll be great sir.
@@saranshsarafmr23r06 zseano has recently made his book about his methodology free. I didn't see it yet, but I watched a few of his videos and talks and I really liked them.
@@BugBountyReportsExplained thank you sir
bingo !!
Hi bro
What u prefer for beginner bug hunters how find bugs securely and easy understanding
Make a video abt that
And
Make one more is
I looking some of xss bug finding videos I didn't understanding
So explain about
How find xss bug
Which tool is used
And there types like
1.Reflected
2.stored
3.dom
P
L
S
MAKE A VIDEO ABOUT THAT
👆
👆👆
👆
Hi bro take my req
your req is to cover all aspects of one of the most popular and complex class of vulnerabilities. Im gonna need 240 hour days for that
@@BugBountyReportsExplained kk bro
Kindly give me a safety instructions to beginner for finding bug
Give some examples of
simple bugs to achieve beginners goals
Hlp me bro
👆👆👆👆👆
50k is joke! These guys should receive more than a million dollars