bug bounty tips(10-19 2022)
vscode文件中存在的敏感信息
org:company filename:sftp.json
org:company host AND pass
user:name filename:sftp.json
user:name host AND pass
"company.com" host AND pass
示例:
{
"protocol": "sftp",
"host": "example.com",
"remotePath": "/var/www",
"username": "root",
"password": "swordfish!23"
}
S3凭证泄露
org:company filename:.credentials
org:company aws_secret_access_key OR aws_secret_key
user:name filename:.credentials
user:name aws_secret_access_key OR aws_secret_key
user:name aws_secret_access_key OR aws_secret_key
示例:
# AWS Credentials file
[default]
aws_access_key_id = yLryKGwcGc3ez9G8YAnjeYMQOc # Informative, can't be used alone
aws_secret_access_key = nAH2VzKrMrRjySLlt8HCdFU3tM2TUuUZgh39NX
[second-profile]
aws_access_key_id = yLryKGwcGc3ez9G8YAnjeYMQOc # Informative, can't be used alone
aws_secret_access_key = nAH2VzKrMrRjySLlt8HCdFU3tM2TUuUZgh39NX
api模糊测试相关的tip
将/api/metadata和/api/resource
加入到你的字典
auth token bypass
/api/users/login -----> 需要有two-factor认证
/api/users/auth-token --------->绕过
原文始发于微信公众号(迪哥讲事):bug bounty tips(10-19 2022)
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论