Shahzad Sadiq

When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past. #bugbountytip #bugbountytip #bugbounty

The new Shodan has a feature to query domain which lists all DNS records as well as subdomains. https://beta.shodan.io/domain/google.com … Now, it's even easier to extract domains from Shodan, I guess. #TIL

#BugBountyTip When using #Nmap as part of your #Recon arsenal, make sure to add --data-length=50 {or any number in 20~60, the TCP packet header size). Otherwise, Nmap will in many cases return False Positives (i.e. too many open ports, or ports that are not actually open). #TBC

Top 20 best holiday destination in 2020 1.PAK 2.GBR 3.KGZ 4.ARM 5.BRA 6.AUS 7.IRL 8.PHL 9.FRA 10.SICILY 11.SEN 12.USA 13.LBN 14.CHN 15.DNK 16.VGB 17.MAR 18.PAN 19.HRV 20.JPN (CN Traveller)

A crowd working together, can make a better world :) Greatful Bug Bounties have allowed me the opportunity to donate $30,000 this December towards this goal. May we all be well :) #togetherwehitharder #ItTakesACrowd

I will not reply to any DM asking me to be a mentor, for tips, or starting points. If you have a question, post it publically so when I answer, others will see response and I dont have to answer same questions over and over. Otherwise, the DM will be ignored if it's not asking a