HUNT A BUG 2024 – TheTechUnique Academy

About Course

Getting Started with Useful Basics to walk you through website vs web applications, database, SQL Queries, Logic Gates, OWASP Top 10, etc.
Walkthrough of BurpSuite – a much needed weapon for all the application security researchers.
Search Like a Pro using Google Dorks to understand the real power of Google and to get optimized results. (The Hacker Way)
The SQL Injection Series to help you find one of the most critical web application vulnerability, manually & with an automated approach also.
Attacking the Doors like “Daya! Darwaza Tod Do..”
Understanding Session – the key for securing any web applications.
Demystifying XSS like Never Before to understand in and out of XSS Vulnerabilities, it’s impact, exploit scenario and mitigation approach.
Your Account is my Another Account – accessing someone else’s account due to Insecure Direct Object Reference vulnerability.
Disastrous Security Misconfigurations that allows hacker to hack not only the web application but the entire web server.
Sensitive Information Disclosure – checking the leak for confidential information that can disrupt the business.
Missing Functional Level Access Control – identifying & breaking illusive locks on functionalities to elevate the user rights that can convert you into a PRO user from a STARTER user without paying a dime.
Cross Site Request Forgery could be as bad as taking over a complete account with just one wrong click.
Using Components with Known Vulnerabilities – the tiny issues which could turn into a bigger one.
Unvalidated Redirects & Forwards – can redirect a user from a legitimate website to a malicious website, possibly a phishing website that could steal user’s credentials and a lot more.

Course Content

eBOOK

eBOOK

FREE CONTENT LIVE BUG FINDING

Dorks

Vulnerability Finding

SQL INJECTION

bwapp

Bug Hunting on Live Website

Stored Based XSS In ADDRESS

04:17
XSS Vulnerability on Shopify 2022

03:00
Data Tampering on Live Website

06:36
How Hacker’s Perform Data Tampering Change Price Of Anything Online 2022

05:28
How to Find xss in Live website 2022

11:04
How to Bypass OTP 2022

04:56
How to bypass Login Password 2022

09:21
How to bypass Email Verification 2022

08:46
Business Impact of XSS | Stealing credentials Bug bounty

09:32
Business Impact of XSS Part 2 Account Hijacking Bug bounty

16:30
How to Bypass OTP response manipulation 2022

11:24
Bypass OTP Latest Method 2022

06:31
How to Bypass OTP Session manipulation 2022

10:32
No Rate Limit vulnerability On Reset Password 2022

06:29

Lab

25 Days Live Training

Bug Bounty Introduction

55:42
Day 2 Installing burp suite

45:44
Day 3 Spider

48:19
Day 4 Insecure direct object references (IDOR)

47:01
Day 5 CSRF(Cross-site request forgery)

43:56
Day 6 File upload vulnerabilities

28:45
Day 7 Bruteforce

42:13
Day 08 A01 Injection

38:45
Day 09 CRLF INJECTION

41:31
Day 10 LDAP INJCTION

47:31
Day 11 A02 Broken Authentication

45:14
Day 12 Try Hack me

43:57
Day 13 A03 Sensitive Data Exposure

48:00
Day 14 A04 XML External Entity

35:41
Day 15 Xml external Entity Lab

42:15
Day 16 A06 security misconfiguration

40:14

About Course

What Will You Learn?

Course Content

eBOOK

eBOOK

FREE CONTENT LIVE BUG FINDING

Dorks

Leak Police Database 2022 (EDUCATION PURPOSE)

Leak Internet service provider Data base like Airtel, jio ,idea, BSNL

Vulnerability Finding

Vulnerability scanning Part 1

Vulnerability scanning Part 2

SQL INJECTION

Sql Injection Introduction

Sqlmap

Login Bypass Using SQL Injection

How to setup Damn Vulnerable Web Application (DVWA) on localhost in Kali Linux or Windows

Using Metasploit with Command Execution

bwapp

How to Setup Bwapp

bwapp Find vulnerability

Bug Hunting on Live Website

Stored Based XSS In ADDRESS

XSS Vulnerability on Shopify 2022

Data Tampering on Live Website

How Hacker’s Perform Data Tampering Change Price Of Anything Online 2022

How to Find xss in Live website 2022

How to Bypass OTP 2022

How to bypass Login Password 2022

How to bypass Email Verification 2022

Business Impact of XSS Part 2 Account Hijacking Bug bounty

How to Bypass OTP response manipulation 2022

Bypass OTP Latest Method 2022

How to Bypass OTP Session manipulation 2022

No Rate Limit vulnerability On Reset Password 2022

Lab

Excessive trust in client-side controls

25 Days Live Training

Bug Bounty Introduction

Day 2 Installing burp suite

Day 3 Spider

Day 4 Insecure direct object references (IDOR)

Day 5 CSRF(Cross-site request forgery)

Day 6 File upload vulnerabilities

Day 7 Bruteforce

Day 08 A01 Injection

Day 09 CRLF INJECTION

Day 10 LDAP INJCTION

Day 11 A02 Broken Authentication

Day 12 Try Hack me

Day 13 A03 Sensitive Data Exposure

Day 14 A04 XML External Entity

Day 15 Xml external Entity Lab

Day 16 A06 security misconfiguration

Student Ratings & Reviews