Scribd Logo
Upload

Welcome to Scribd!

  • 1st Lecture

    Uploaded by

    DMJ ardunio
    16 views5 pages
    sss

    Original Title

    1st lecture

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    sss

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    16 views5 pages

    1st Lecture

    Uploaded by

    DMJ ardunio
    sss

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    1.

    Sorting
    2. Functional
    3. Working

    nokia.com

    500 Subdomains

    market.nokia.com
    sales.nokia.com

    Duplicate : 100
    Valid / Functional : 100
    401,403,Auth: 50
    Redirection : 50
    Wokring: API / Third party services : AWS , GCP ,EC2 , Atlassina , Jira

    https://1-app.platform.tripadvisor.com
    https://advert.ext.tripadvisor.com
    https://ar.api.ext.tripadvisor.com
    https://antivirusprod-cmx.platform.tripadvisor.com
    https://affiliates.tripadvisor.com
    https://911.ar.api.ext.tripadvisor.com
    https://beta.subs.tripadvisor.com
    https://api.tripadvisor.com
    https://business.tripadvisor.com
    https://api.ext.tripadvisor.com
    https://antivirus1-korea.cmx-prf-lvdc.platform.tripadvisor.com
    https://autodiscover.tripadvisor.com
    https://blog.tripadvisor.com
    https://api1-tapayments-com.tripadvisor.com
    https://antivirus1.1-app.platform.tripadvisor.com
    https://api2-tapayments-com.tripadvisor.com
    https://b.ext.tripadvisor.com
    https://beta.tripadvisor.com
    https://cdn.tripadvisor.com
    https://careers.tripadvisor.com
    https://cmx-prf-lvdc.platform.tripadvisor.com
    https://cn.ar.api.ext.tripadvisor.com
    https://cpm.ext.tripadvisor.com
    https://dynamic-media-cdn-origin.tripadvisor.com
    https://dynamic-media-cdn.tripadvisor.com
    https://exchange-east-imaps.tripadvisor.com
    https://exchange-east.tripadvisor.com
    https://exchange-east-smtps.tripadvisor.com
    https://engineering.tripadvisor.com
    https://exchange-west-imaps.tripadvisor.com
    https://exchange-west-smtps.tripadvisor.com
    https://exchange-west.tripadvisor.com
    https://federate.tripadvisor.com
    https://feeds.ext.tripadvisor.com
    https://f.ext.tripadvisor.com
    https://exchange.tripadvisor.com
    https://feedserver.tripadvisor.com
    https://gamma.ext.tripadvisor.com
    https://gwapi.tripadvisor.com
    https://foo.tripadvisor.com
    https://gwapi1.tripadvisor.com
    https://go.ext.tripadvisor.com
    https://hacapitest.developer.tripadvisor.com
    https://hare-media-cdn.tripadvisor.com
    https://hare-cdn.tripadvisor.com
    https://hare-ar.tripadvisor.com
    https://hare-pl.tripadvisor.com
    https://hare-th.tripadvisor.com
    https://hare-no.tripadvisor.com
    https://hare.tripadvisor.com
    https://hare-cn.tripadvisor.com
    https://help-pl.tripadvisor.com
    https://help.tripadvisor.com
    https://help-no.tripadvisor.com
    https://hotels.tripadvisor.com
    https://image.tripadvisor.com
    https://imaps.tripadvisor.com
    https://imap.ext.tripadvisor.com
    http://api-bing.tripadvisor.com
    https://info.ext.tripadvisor.com
    https://jg.corp.tripadvisor.com
    https://jg-a.corp.tripadvisor.com
    https://jg01.drt01.corp.tripadvisor.com
    https://jg02.drt01.corp.tripadvisor.com
    https://jg03.drt01.corp.tripadvisor.com
    https://join.plus.tripadvisor.com
    https://ir.tripadvisor.com
    https://live-servicegateway-ldap.tripadvisor.com
    https://lyncdiscover.tripadvisor.com
    https://m.ext.tripadvisor.com
    https://marlo.ext.tripadvisor.com
    https://media-cdn.tripadvisor.com
    https://media.ext.tripadvisor.com
    https://media.tripadvisor.com
    https://mp1.sli.tripadvisor.com
    https://mirrors.tripadvisor.com
    https://mig.platform.tripadvisor.com
    https://ndh-jss-01.corp.tripadvisor.com
    https://new.ext.tripadvisor.com
    https://new.tripadvisor.com
    https://nl.tripadvisor.com
    https://nokiamaps.tripadvisor.com
    https://nokiamaps-pl.tripadvisor.com
    https://nokiamaps-no.tripadvisor.com
    https://opshttplb.l.tripadvisor.com
    https://no.tripadvisor.com
    https://opshttplb.a.tripadvisor.com
    https://opshttplb.n.tripadvisor.com
    https://opshttplb.d.tripadvisor.com
    https://origin-ap.tripadvisor.com
    https://origin-api.tripadvisor.com
    https://origin-com.tripadvisor.com
    https://origin-ap2.tripadvisor.com
    https://origin-eu.tripadvisor.com
    https://origin-eu2.tripadvisor.com
    https://origin-tamgrt.tripadvisor.com
    https://origin-www.tripadvisor.com
    https://partner-api.tripadvisor.com
    https://products.dtc.tripadvisor.com
    https://products.plus.tripadvisor.com
    http://passwordreset.corp.tripadvisor.com
    https://partnersportal.tripadvisor.com
    https://passport.tripadvisor.com
    https://pop.ext.tripadvisor.com
    https://purpose.tripadvisor.com
    https://prxy.d.tripadvisor.com
    https://prxy01d.d.tripadvisor.com
    https://rcp-demo.ext.tripadvisor.com
    https://rcp-dev.ext.tripadvisor.com
    https://rentals-fk.tripadvisor.com
    https://rentals.tripadvisor.com
    https://reputation.tripadvisor.com
    https://rentals-sandbox.ext.tripadvisor.com
    https://rentalsupport.tripadvisor.com
    https://secret-origin-aevaiph4-api.tripadvisor.com
    https://secret-origin-aevaiph4-com.tripadvisor.com
    https://secret-origin-aevaiph4-eu.tripadvisor.com
    https://sip.tripadvisor.com
    https://secret-origin-aevaiph4-static.tripadvisor.com
    https://seatguru-origin.tripadvisor.com
    https://spotlight-dev.tripadvisor.com
    https://service.platform.tripadvisor.com
    https://sl.tripadvisor.com
    https://smtps.tripadvisor.com
    https://sparkpost-webhook.d.tripadvisor.com
    https://spotlight.tripadvisor.com
    https://spool.ext.tripadvisor.com
    https://tech.tripadvisor.com
    https://tripadvisor.com
    https://tripwow.tripadvisor.com
    https://th.tripadvisor.com
    http://newsletter-content.tripadvisor.com
    https://uatwindscreencover.ext.tripadvisor.com
    https://vaccinehub-dev.ext.tripadvisor.com
    https://vault.smz.tripadvisor.com
    https://vcs-expwy.drt01.corp.tripadvisor.com
    https://vcs-expwy02.drt01.corp.tripadvisor.com
    https://vcs-expwy01.drt01.corp.tripadvisor.com
    https://vcs-expwy01.tripadvisor.com
    https://vcs-expwy02.tripadvisor.com
    https://vcs-ext.tripadvisor.com
    https://virusremoval.ext.tripadvisor.com
    https://www.antivirusprod-cmx.platform.tripadvisor.com
    http://pl.tripadvisor.com
    https://www.antivirusreviews.mig.platform.tripadvisor.com
    https://www.purpose.tripadvisor.com
    https://www.marlo.ext.tripadvisor.com
    https://t.mp1.tripadvisor.com

    Functions:
    Name: XSS , SQL(POST based injection), Command injection , SSRF , DOS , SSTI/CSTI,
    HTMLi , Rate limit

    Insert URL : SSRF , Dos , CSRF , Port scanning , RFI

    Delete Trip: IDOR , CSRF , SQLi ,


    BL = Try to delete single trip multiple times : Aditya + 500 > Private

    1.
    https://web.archive.org/cdx/search/cdx?url=*.target.com/*&output=text&fl=original&c
    ollapse=urlkey
    2. Cntrl + F "apikey"

    https://cdn.rippling.com/static/apps/screenshots/7Geese/WebhookdetailsImage.png
    https://cdn.rippling.com/static/apps/screenshots/adobe/credentialDetailsImage.png
    https://cdn.rippling.com/static/apps/screenshots/aircall/addAPIKeyImage.png
    https://cdn.rippling.com/static/apps/screenshots/aws/secret.png
    https://cdn.rippling.com/static/apps/screenshots/bluejeans/copyToken.png
    https://cdn.rippling.com/static/apps/screenshots/bluejeans/generateToken.png
    https://cdn.rippling.com/static/apps/screenshots/bluejeans/selectOauth.png
    https://cdn.rippling.com/static/apps/screenshots/closeio/generate.png
    https://cdn.rippling.com/static/apps/screenshots/envoy/envoyApiKey.png
    https://cdn.rippling.com/static/apps/screenshots/fifteenfive/apiKeys.png

    Category : P1

    Keywords:
    admin
    pwd
    password
    .sql
    .json
    .js
    config
    Webhook
    configuration
    apikey
    token
    cred
    oauth
    anvoy
    api
    secret
    secret
    auth
    env
    s3
    url
    uri
    .git
    prod
    dev
    path
    dir
    accessToken
    config.js
    main.js
    app.js
    To check Oigin IP[Not a bug]

    SMTP

    aditya@0derbvqyxpmp4u44cutcihhzrqxgl5.burpcollaborator.net

    Task :
    API docs
    Uber api docs
    Zomato API DOCS
    Tesla
    Walmart

    You might also like