Bug_Hunters_Methodology_Live_Day_Two_-_App_Analysis_Master[.]pdf

Sharing

Copy URL

Twitter E-mail

General

Target

Bug_Hunters_Methodology_Live_Day_Two_-_App_Analysis_Master.pdf
Size

8.0MB
MD5

fca5ec9415a3904cca6e4a9a64b24692
SHA1

2a1250fa452041fc85f1ced0ecf8962d0d8ace58
SHA256

5cc9399e6132691ce6f55e5a198e5822d9bb874c67d07da7b1c9503db7ab3149
SHA512

a69cfb296526f5fac4f40cd631fbfc42309cd9f630463f07bcbee80e56fd9b51a7cb95826aa5114d3353c6b8b3b04e6d87de83171fcd76068734d41c55b6d887
SSDEEP

196608:UFknu/JJhAZrf9d3ktFlGvrRUurGJ9r+Ha2cunDxb:U2u/8lhktAR0J9C6nqF

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

pdf link

resource	yara_rule
sample	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

Bug_Hunters_Methodology_Live_Day_Two_-_App_Analysis_Master.pdf
.pdf
- http://bugcrowd.com
- http://deobfuscate.io
- http://troupga5ke78yjdu4hv12s1v2m8dw3ks.oastify.com
- http://www.blackhat.com/docs/euen-US-en-US14/materials/euen-US-en-US14en-US-en-USJaveden-US-en-USRevisitingen-US-en-USXSSen-US-en-USSanitization.pdf
- https://academy.ranakhalil.com/p/web-security-academy-video-series
- https://app.com/en-USresourceen-US?en-USparameteren-US=en-USvalueen-US&param2=valueen-USOr
- https://app.com/en-USrouteen-US/en-USresourceen-US/en-USsuben-US-en-USresourceen-US/...en-USUnderstanding
- https://bit.ly/3cIYgdt
- https://blog.assetnote.io/bugen-US-en-USbounty/2020/02/02/expandingen-US-en-USattacken-US-en-USsurfaceen-US-en-USreacten-US-en-USnative/
- https://bxsshunter.com/
- https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html
- https://chrome.google.com/webstore/detail/builtwith-technology-prof/dapjbgnjinbpoindlpdmhochffioedbn
- https://chrome.google.com/webstore/detail/wappalyzer-technology-pro/gppongmhjkpfnbhagpmjfkannfbllamg
- https://chrome.google.com/webstore/detail/whatruns/cmkdbmfndkfgebldhnkbfhlneefdaaip
- https://deobfuscate.io
- https://gandalf.lakera.ai
- https://gist.github.com/jen-UShaddix/78cece26c91c626en-US3653f31ba453e273b
- https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b
- https://github.com/AggressiveUser/AllForOne
- https://github.com/LewisArdern/metasecjs
- https://github.com/PortSwigger/retire-js
- https://github.com/ameenmaali/wordlistgen
- https://github.com/danielmiessler/SecLists
- https://github.com/digininja/CeWL
- https://github.com/dwisiswant0/apkleaks
- https://github.com/lc/gau
- https://github.com/payloadbox/xxe-injection-payload-list
- https://github.com/projectdiscovery/nuclei
- https://github.com/r0oth3x49/ghauri
- https://github.com/retirejs/retire.js/
- https://github.com/rverton/webanalyze
- https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Server Side Request Forgery/README.md
- https://github.com/xm1k3/cent
- https://github.com/xnl-h4ck3r/GAP-Burp-Extension
- https://github.com/xnl-h4ck3r/waymore
- https://hss-opus.ub.ruhr-uni-bochum.de/opus4/frontdoor/deliver/index/docId/4522/file/diss.pdf
- https://hub.docker.com/
- https://iamaakashrathee.medium.com/ssrfen-US-en-USmethodologyen-US-en-USbyen-US-en-USaakashen-US-en-USratheeen-US-en-USf175665e2ea
- https://infosecwriteups.com/howen-US-en-USien-US-en-USgoten-US-en-USowneden-US-en-USaen-US-en-USmultien-US-en-USbillionen-US-en-USdollaren-US-en-USretailersen-US-en-USmysqlen-US-en-USdatabasesen-US-en-USusingen-US-en-USsimpleen-US-en-USsqlen-US-en-USinjectionen-US-en-US30f8b0dfd9ce
- https://pentesterlab.com/
- https://portswigger.net/bappstore/0ab7a94d8e11449daaf0fb387431225b
- https://portswigger.net/bappstore/0ab7a94d8e11449daaf0fb387431225en-USben-USen-US
- https://portswigger.net/research/backslash-powered-scanning-hunting-unknown-vulnerability-classes
- https://soroush.me/blog/2012/11/file-in-the-hole/
- https://spaceraccoon.github.io/webpack-exploder/
- https://twitter.com/NahamSec
- https://twitter.com/irsdl
- https://twitter.com/spaceraccoonsec
- https://wordlists.assetnote.io/
- https://www.blackhat.com/docs/eu-14/materials/eu-14-Javed-Revisiting-XSS-Sanitization.pdf
- https://www.hackthebox.com/
- https://www.udemy.com/course/intro-to-bug-bounty-by-nahamsec/
- https://www.vulnhub.com/
- https://www.youtube.com/@RanaKhalil101/videos
- https://www.youtube.com/watch?v=2WzqH6N-Gbc
- Show all