Recon for bug bounty, penetration testers & ethical hackers
- CategoryOther
- TypeTutorials
- LanguageEnglish
- Total size5.1 GB
- Uploaded Bytutsnode
- Downloads105
- Last checkedJan. 23rd '23
- Date uploadedJan. 22nd '23
- Seeders 43
- Leechers24
Description
This course is fully made for website reconnaissance for bug bounty hunters, penetration testers & ethical hackers. This is a intermediate level course all the topics are discussed here regarding recon on websites.
Some of the topics are what is reconnaissance, what is recon , recon for bug bounty hunters and penetration testers, Subdomain enumeration, URL enumeration, parameter bruteforcing, Creating your own recon tools and many more…
This course is fully focused on website recon and vulnerability assessment.
There will be full methodology of website reconnaissance, bug bounty hunting, penetration testing. The videos are divided into small sections for the students to learn.
All the resources are provided in the resource section including links, pdf, payloads that are used in course.
Course Curriculum :
Introduction
Introduction to recon
Subdomain enumeration from tools
Subdomain enumeration #1
Subdomain enumeration #2
Subdomain enumeration #3
Subdomain enumeration #4
Subdomain bruteforcing
Filtering unique domains
Subdomain generator
Subdomain enumeration from websites
Subdomain enumeration from website #1
Subdomain enumeration from website #2
Subdomain enumeration from website #3
Subdomain enumeration from website #4
Filtering live domains
Filtering live domains
URL extraction from the internet
URL extraction from the internet #1
URL extraction from the internet #2
Finding parameters
Finding parameters
Parameter bruteforcer
Finding URL from past
URL from past
Sorting urls
Sorting url for vulnerabilities
Automation for replacing parameters with Payloads
Automation for replacing parameters with Payloads
Footprinting websites ( Website recon )
Whatweb recon
Netcraft
Security headers
Dnsdumpmaster
Whois recon
Mxtoolbox
OSINT
Maltego
Browser addons for recon
wappalyzer
retire.js
shodan
Knoxx
Hack-tools addon
WAF idetification
WAF identification
Subdomain takeover
HostileSubBruteForcer
Sub404
Subjack
Fuzzing (Content-Discovery)
dirb
ffuf
Port scanning
Introduction to nmap
Port specification in nmap
Service and version detection from nmap
Firewall bypass technique
Fast port scanning
nabbu
masscan
Visual recon
Gowitness
Google dorking
Introduction to google dorking
Understnding the URL structure
Syntax of google dorking
Google dorking operators
Google search operators ( Part – 1 )
Google search operators ( Part – 2 )
Google dorking practical
Introduction to practical google dorking
How to find directory listing vulnerabilities ?
How to dork for wordpress plugins and thems ?
How to dork for web servers versions ?
How to dork for application generated system reports ?
Dorking for SQLi
Reading materials for google dorking
Tips for advance google dorking
Tip #1
Tip #2
Tip #3
Shodan dorking
Intro to shodan dorking
Shodan web interface
Shodan search filters
Shodan dorking practical
Finding server
Finding fIles and directories
Finding operating systems
Finding compromised devices and websites
Shodan command line
Introduction to shodan command line
Practical shodan in command line
Github dorking
Introduction to github dorking
Github dorking practical
Vulnerability scanning
Nuclei
Wp-Scan
Scanning with burpsuite
Metasploit for recon
DNS recon using metasploit
Sub-domain enumeration using metasploit
E-mail address finding
Port scanning using metasploit
TCP SYN port scan using metasploit
SSH version detection
FTP version enumeration
MySQL version detection
HTTP enumeration
Payloads for bug bounty hunters
Payloads for bug hunters and enetration testers
How to create tools for recon ?
SSRF finder tool
XSS finding too
URL extractor from javascript files
Full website recon tool
Bonus
Bonus video
Thank you
Vivek Pandit
Who this course is for:
Bug bounty hunters, penetration testers, ethical hackers and etc.
Requirements
Basic knowledge of linux is required
Basic knowledge of vulnerabilities
Last Updated 1/2023
Files:
Recon for bug bounty, penetration testers & ethical hackers [TutsNode.net] - Recon for bug bounty, penetration testers & ethical hackers 29. How to create tools for recon- 4. Full website recon tool.mp4 (242.7 MB)
- 2. URL extractor from javascript files.mp4 (176.9 MB)
- 3. SSRF finder tool.mp4 (87.9 MB)
- 1. XSS finding tool.mp4 (41.5 MB)
- 3.3 Section - 21 ( Resource ).pdf (268.6 KB)
- 4. Resource.html (1.2 KB)
- 3.1 List of shodan general filters.pdf (39.1 KB)
- 3.2 List of shodan search facets.pdf (34.5 KB)
- 2. Shodan web interface.mp4 (103.6 MB)
- 3. Shodan search filters.mp4 (94.6 MB)
- 1. Introduction to shodan dorking.mp4 (13.7 MB)
- 5.1 Section - 11 ( Resource ).pdf (82.7 KB)
- 2. retire.js addon.mp4 (49.2 MB)
- 5. Hack-tools addon.mp4 (45.8 MB)
- 1. Wappalyzer addon.mp4 (38.8 MB)
- 3. Shodan addon.mp4 (26.2 MB)
- 4. Knoxx addon.mp4 (14.6 MB)
- 1. Payloads for bug hunters and penetration testers.html (1.5 KB)
- 1.1 My_personal_payload_collection.rar (246.9 KB)
- 1. Automation for replacing parameters with Payloads.html (0.0 KB)
- 3. ffuf.mp4 (64.4 MB)
- 2. dirb.mp4 (21.5 MB)
- 3. List of shodan search filters.html (0.0 KB)
- 1. Nuclei tool.mp4 (118.7 MB)
- 2. WP-Scan.mp4 (94.6 MB)
- 4. Scanning with burpsuite.mp4 (51.1 MB)
- 7. Google search operators ( Part - 2 ).mp4 (176.8 MB)
- 7.1 Section - 18 ( Resource )-2.pdf (136.5 KB)
- 6. Google search operators ( Part - 1 ).mp4 (105.9 MB)
- 4. Golden rules of google dorking.mp4 (75.5 MB)
- 5. Google dorking operators.mp4 (56.2 MB)
- 2. Understanding the structure of url.mp4 (33.9 MB)
- 3. Syntax of google dorking.mp4 (33.4 MB)
- 1. Introduction to google dorking.mp4 (32.7 MB)
- 7.2 Section - 18 ( Resource ).pdf (1.1 MB)
- 1. Filtering live domains.mp4 (160.5 MB)
- 7.1 Section - 2 ( Resource ).pdf (191.5 KB)
- 1. Subdomain enumeration #1.mp4 (79.7 MB)
- 3. Subdomain enumeration #3.mp4 (57.3 MB)
- 2. Subdomain enumeration #2.mp4 (57.0 MB)
- 7. Subdomain generator.mp4 (57.0 MB)
- 5. Subdomain bruteforcing tools.mp4 (49.4 MB)
- 4. Subdomain enumeration #4.mp4 (29.5 MB)
- 6. Filtering unique domains.mp4 (26.6 MB)
- 4.1 Section - 15 ( Resource ).pdf (77.0 KB)
- 4. Firewall bypass technique.mp4 (55.1 MB)
- 3. Service and version detection from nmap.mp4 (32.9 MB)
- 1. Introduction to nmap.mp4 (27.8 MB)
- 2. Port specification in nmap.mp4 (20.2 MB)
- 2. Github dorking practical.mp4 (152.6 MB)
- 1. Introduction to github dorking.mp4 (60.0 MB)
- 2.1 github.dorking.pdf (7.6 MB)
- 4.1 Section - 3 ( Resource ).pdf (177.3 KB)
- 2. Subdomain enumeration from website #2.mp4 (67.5 MB)
- 4. Subdomain enumeration from website #4.mp4 (42.8 MB)
- 3. Subdomain enumeration from website #3.mp4 (36.0 MB)
- 1. Subdomain enumeration from website #1.mp4 (34.8 MB)
- 7.1 Section - 18 ( Resource )-2.pdf (136.5 KB)
- 1. Introduction to practical google dorking.mp4 (143.9 MB)
- 7. Reading materials for google dorking.mp4 (75.4 MB)
- 3. How to dork for wordpress plugins and thems .mp4 (33.1 MB)
- 2. How to find directory listing vulnerabilities .mp4 (25.3 MB)
- 6. Dorking for SQLi.mp4 (24.5 MB)
- 4. How to dork for web servers versions .mp4 (16.4 MB)
- 5. How to dork for application generated system reports .mp4 (14.0 MB)
- 8.1 Document 7.pdf (73.8 KB)
- 1. Wahtweb scanner.mp4 (106.4 MB)
- 7. OSINT.mp4 (86.6 MB)
- 2. Netcraft.mp4 (59.3 MB)
- 5. Whois recon.mp4 (50.7 MB)
- 8. Maltego.mp4 (45.3 MB)
- 4. Dnsdumpmaster.mp4 (44.8 MB)
- 6. Mxtoolbox.mp4 (41.9 MB)
- 3. Security headers.mp4 (31.8 MB)
- 2. Sub-domain enumeration using metasploit.mp4 (121.4 MB)
- 1. DNS recon using metasploit.mp4 (55.6 MB)
- 3. E-mail address finder.mp4 (20.0 MB)
- 1. Sorting url for vulnerabilities.mp4 (113.8 MB)
- 2. URL extraction from the internet #2.mp4 (101.8 MB)
- 1. URL extraction from the internet #1.mp4 (82.8 MB)
- 1. Gowitness.mp4 (82.2 MB)
- 1. Finding servers.mp4 (81.9 MB)
- 2. Finding fIles and directories.mp4 (69.8 MB)
- 3. Finding operating systems.mp4 (34.3 MB)
- 4. Finding compromised devices and websites.mp4 (29.6 MB)
- 1. WAF Identificaton.mp4 (62.9 MB)
- 1. URL from past.mp4 (49.2 MB)
- 1. naabu.mp4 (48.7 MB)
- 2. Masscan.mp4 (41.8 MB)
- 1. HostileSubBruteForcer.mp4 (46.8 MB)
- 3. Subjack.mp4 (38.5 MB)
- 2. Sub404.mp4 (27
Code:
- udp://open.stealth.si:80/announce
- udp://tracker.tiny-vps.com:6969/announce
- udp://fasttracker.foreverpirates.co:6969/announce
- udp://tracker.opentrackr.org:1337/announce
- udp://explodie.org:6969/announce
- udp://tracker.cyberia.is:6969/announce
- udp://ipv4.tracker.harry.lu:80/announce
- udp://tracker.uw0.xyz:6969/announce
- udp://opentracker.i2p.rocks:6969/announce
- udp://tracker.birkenwald.de:6969/announce
- udp://tracker.torrent.eu.org:451/announce
- udp://tracker.moeking.me:6969/announce
- udp://tracker.dler.org:6969/announce
- udp://9.rarbg.me:2970/announce