April 14, 2022 at 4:28 PM
I am selling an private Bug Bounty tool, which I personally use during bug hunting. I decided to sell it. It is a python script (all in one tool) which can find the following vulnerabilities:
- XSS scanning
- SQLi scanning
- CORS scanning
- CRLF scanning
- Cookie analysing scan (find desirialization patterns, and many more)
- HTTP2 vulnerabilities (DoS and HTTP2 Smuggling)
- LFI
- OS Command Injection (Blind and normal) (both Linux and Windows)
- Open redirect
- SSTI
- XXE
- Desirialization pattern scanner on data/strings
- HTTP-Header analysis
- Parameter pollution -> XSS
The tool works on .json packages, so it's very easy to edit and change things (and functionality) to your needs.
Each vulnerability is scanned by the most simple to the most advanced payloads (from different bug bounty tweets and from my own researches as well, thats why its a private program).
If you are interested, dm me on Telegram @nadeshot1
- XSS scanning
- SQLi scanning
- CORS scanning
- CRLF scanning
- Cookie analysing scan (find desirialization patterns, and many more)
- HTTP2 vulnerabilities (DoS and HTTP2 Smuggling)
- LFI
- OS Command Injection (Blind and normal) (both Linux and Windows)
- Open redirect
- SSTI
- XXE
- Desirialization pattern scanner on data/strings
- HTTP-Header analysis
- Parameter pollution -> XSS
The tool works on .json packages, so it's very easy to edit and change things (and functionality) to your needs.
Each vulnerability is scanned by the most simple to the most advanced payloads (from different bug bounty tweets and from my own researches as well, thats why its a private program).
If you are interested, dm me on Telegram @nadeshot1