$100 Time Based Sql Injection Bug Bounty PoC
Рет қаралды 7,899
Күн бұрынuhmm so here's a short context about the POC :
I was manually testing the site for blind SSRF and then burp bounty notifies me that it is vulnerable to time based sqli... :)
@brunobandeira2532 27 күн бұрын
Is this burp bounty pro extension cracked or did you actually buy it? if so, please send me the link
@tusharhackseverything 8 ай бұрын
this program doesn't respond.. found multiple bugs in it
@FakerPK 8 ай бұрын
can you explain what this is about?
@randreu28 8 ай бұрын
As far as my understanding goes, it basically is a cybersecurity attack. It works by manipulating what the client machine (you as a user entering a website, for example) sends to the server machine ( the machine that controls the website) to execute commands in the database at will. In this particular case, a time based command execution of waiting for x time to respond.
@rohancyber 8 ай бұрын
bro how did you burp scan for vulnerabilities and notify you can you elaborate it. Thanks
@marco1337-PT 8 ай бұрын
I use burp bounty for fun
@Hackerone1444 7 ай бұрын
is sqli work on cookie side ?
@bambangsutrisna5006 7 ай бұрын
works
@Hackerone1444 7 ай бұрын
@@bambangsutrisna5006 any random cookies ? Example: will every session cookie side work ?
@ayushmanngupta7027 5 ай бұрын
hey bro can you share your burpsuite pro link so that I can download your burpsuite
@Aakarshmishra01 3 ай бұрын
Bro how did you found that target? I mean is it by dorks or something??
@marco1337-PT 3 ай бұрын
dork
@TuanNguyen-ve9xf 8 ай бұрын
When i use burp with https, all infor was hashed, can u tell me how to fix it 😬
@landless-wind 8 ай бұрын
chelsy was here
@marco1337-PT 8 ай бұрын
hahaha Bai
@ariadesupriyatna 5 ай бұрын
🎉
@abhinavbansal9396 8 ай бұрын
So they were putting cookie value in sql statement?
@marco1337-PT 8 ай бұрын
SQLi via cookie
@_sl1de_ 8 ай бұрын
Why only 100 ?
@leo___333 8 ай бұрын
Because he is not exploited
@rifaelsitorus5211 7 ай бұрын
What burp extension do you use?
@marco1337-PT 7 ай бұрын
burp bounty
@ederferreira3764 7 ай бұрын
What is your twitter? How do I contact you?
@marco1337-PT 7 ай бұрын
Facebook
BePractical
Рет қаралды 21 М.