👨‍🏫 Tutorial Finding a bug host or identifying vulnerabilities on a website like www.globe.com.ph

[Extra Focus]

Finding a bug host or identifying vulnerabilities on a website like You do not have permission to view the full content of this post. Log in or register now. involves ethical häçking practices and should only be done with proper authorization. Unauthorized attempts to find vulnerabilities can be îllégâl and unethical. However, if you are authorized to perform security testing on a website, here are some general steps and tools you can use:

Prerequisites

1. Authorization: Ensure you have explicit permission from the website owner to perform security testing.
2. Knowledge: Familiarize yourself with ethical häçking principles and methodologies.
3. Tools: Install necessary tools for vulnerability scanning and penetration testing.

Steps to Find Vulnerabilities

1. Reconnaissance

Gather information about the target website.

• WHOIS Lookup: Use tools like You do not have permission to view the full content of this post. Log in or register now. to gather domain information.
• DNS Enumeration: Use tools like nslookup, dig, or You do not have permission to view the full content of this post. Log in or register now. to gather DNS information.
• Subdomain Enumeration: Use tools like Sublist3r or You do not have permission to view the full content of this post. Log in or register now. to find subdomains.

2. Scanning

Identify open ports and services running on the target.

- Nmap: Use Nmap to scan for open ports and services.

bash
  nmap -sS -sV www.globe.com.ph

3. Vulnerability Scanning

Use automated tools to scan for known vulnerabilities.

You do not have permission to view the full content of this post. Log in or register now.

4. Manual Testing

Perform manual testing to identify vulnerabilities that automated tools might miss.

• SQL Injection: Test for SQL injection vulnerabilities using tools like sqlmap or manual techniques.
• Cross-Site Scripting (XSS): Test for XSS vulnerabilities by injecting scripts into input fields.
• Cross-Site Request Forgery (CSRF): Test for CSRF vulnerabilities by crafting malicious requests.

5. Reporting

Document your findings and report them to the website owner.

• Detailed Report: Include detailed information about each vulnerability, including steps to reproduce, potential impact, and recommended fixes.
• Responsible Disclosure: Follow responsible disclosure practices to ensure the vulnerabilities are fixed before they are publicly disclosed.

Tools

You do not have permission to view the full content of this post. Log in or register now.

Disclaimer

Performing security testing without proper authorization is îllégâl and unethical. Always ensure you have explicit permission from the website owner before conducting any security tests.

 

[KILLERBOY]

eto na baka may butas pa, sa iyong buhay globibo

 

[Kurokroko]

Abang sana may maka butas
Tapos my free trial na 2hours sila

 

[zdrc]

kadali sa portdroid

 

[Aizen Madara]

Thanks for sharing

 

[LAWLIET]

Thanks for sharing TS

 

[PHC - BABYMAXFORD]

Thanks for sharing.

 

[PHC-FeelingPro]

kadali sa portdroid

Madali pala ee
Bakit dka gumawa

 

[dark_byte]

 

[dadiming]

pa bm lods thanks