Coffin's banner

Coffin

@lostsec_ • 29,799 subscribers

ʜᴇʟᴘɪɴɢ ᴏʀɢᴀɴɪᴢᴀᴛɪᴏɴꜱ ꜱᴛᴀʏ ꜱᴇᴄᴜʀᴇ ᴛʜʀᴏᴜɢʜ ʙᴜɢ ʜᴜɴᴛɪɴɢ, ᴏꜱɪɴᴛ ᴀɴᴅ ꜱᴇᴄᴜʀɪᴛʏ ʀᴇꜱᴇᴀʀᴄʜ | ᴡʀɪᴛᴇᴜᴘꜱ: https://t.co/39DXITYobD | ᴄᴏᴍᴍᴜɴɪᴛʏ: https://t.co/7HlHg4MWbh

Shorts

Here’s a proper PoC I made for PasteJacking XSS. You can test it yourself on my website:

Here’s a proper PoC I made for PasteJacking XSS. You can test it yourself on my website:

29,801 次观看

i made a simple CORS PoC, just replace the target and test it against a sensitive endpoint, since public ones usually don’t qualify for a valid report..

i made a simple CORS PoC, just replace the target and test it against a sensitive endpoint, since public ones usually don’t qualify for a valid report..

17,706 次观看

Videos

Anya Rossi

sweetdream.ai

SweetDream.ai•Sponsored•Livecam

Watch Anya Live

Anya is streaming live right now! Join her private show and enjoy exclusive content.

Exclusive private shows

1.2k viewers online

Private Show

Join now for exclusive access

Free preview available • Premium content

if you are a bug hunter and your notes don’t look like this, you’re not my type..

if you are a bug hunter and your notes don’t look like this, you’re not my type..

24,833 次观看 • 1 个月前

/Dependency Confusion/ FULL SYSTEM + CLOUD METADATA HARVESTING & MULTI-CHANNEL EXFILTRATION (DNS + HTTP)

/Dependency Confusion/ FULL SYSTEM + CLOUD METADATA HARVESTING & MULTI-CHANNEL EXFILTRATION (DNS + HTTP)

23,923 次观看 • 1 个月前

People seriously underestimate how dangerous leaked Google API keys are. With just a little know-how, you can use them to access Gemini without spending money. This clip is just a small demo. I’ve covered a wide range of dorks and methods in my member only video.

People seriously underestimate how dangerous leaked Google API keys are. With just a little know-how, you can use them to access Gemini without spending money. This clip is just a small demo. I’ve covered a wide range of dorks and methods in my member only video.

21,981 次观看 • 1 个月前

Hi everyone! I just built a WaybackURLs extension that saves you a ton of time when gathering archive URLs. it supports main domains, wildcards, specific paths and sensitive file extensions. Give it a try and let me know your feedback!

Hi everyone! I just built a WaybackURLs extension that saves you a ton of time when gathering archive URLs. it supports main domains, wildcards, specific paths and sensitive file extensions. Give it a try and let me know your feedback!

57,787 次观看 • 7 个月前

just built this tool, take a look 🔥

just built this tool, take a look 🔥

13,873 次观看 • 1 个月前

Finally our website is live! You’ll find all the bug hunting commands, tools, extensions & writeups here—many more things coming soon for all types of bugs. Huge thanks to @madhusudan91263 for contributing and making this toolkit even more amazing!

Finally our website is live! You’ll find all the bug hunting commands, tools, extensions & writeups here—many more things coming soon for all types of bugs. Huge thanks to @madhusudan91263 for contributing and making this toolkit even more amazing!

57,593 次观看 • 1 年前

Try the latest version of Crtmon. We’ve completely removed Docker, so you can now run the tool without any Docker-related issues. It also works smoothly with stdin input.

Try the latest version of Crtmon. We’ve completely removed Docker, so you can now run the tool without any Docker-related issues. It also works smoothly with stdin input.

15,571 次观看 • 5 个月前

so finally guys here is your final script for xss now its give you results with 0% false postive free tool for all 🔥and special thanks to my brother who make this tool more better and we will add all owsp top 10 vuln scan soon..

so finally guys here is your final script for xss now its give you results with 0% false postive free tool for all 🔥and special thanks to my brother who make this tool more better and we will add all owsp top 10 vuln scan soon..

43,500 次观看 • 1 年前

amazing xss tool ❤️

amazing xss tool ❤️

39,863 次观看 • 1 年前

Google Captcha Bypass :) thank to my friend Sarper⚡

Google Captcha Bypass :) thank to my friend Sarper⚡

47,983 次观看 • 2 年前

tried something new for the Bug Hunting community i hope this will help in there hunting jurney ❤️ site: special thanks to my team haq and javox to make it more better..

tried something new for the Bug Hunting community i hope this will help in there hunting jurney ❤️ site: special thanks to my team haq and javox to make it more better..

36,802 次观看 • 1 年前

I used to think people didn’t really care about the content or its value. But after seeing all the comments on my YouTube and X posts, I’m honestly amazed by the reactions. It really motivates me to keep improving and make even better content.. #yourLostsecForever

I used to think people didn’t really care about the content or its value. But after seeing all the comments on my YouTube and X posts, I’m honestly amazed by the reactions. It really motivates me to keep improving and make even better content.. #yourLostsecForever

11,925 次观看 • 5 个月前

Created a private bookmarklet packed with features to extract hidden paths, URLs and endpoints. It fetches data from HTML elements, inline scripts, quoted strings, performance logs and even external JavaScript files for deep reconnaissance.

Created a private bookmarklet packed with features to extract hidden paths, URLs and endpoints. It fetches data from HTML elements, inline scripts, quoted strings, performance logs and even external JavaScript files for deep reconnaissance.

21,772 次观看 • 1 年前

get lifetime free powerful ryzen 9 vps for Bug hunting 🔥 watch poc and full details how to setup in my telegram channel

get lifetime free powerful ryzen 9 vps for Bug hunting 🔥 watch poc and full details how to setup in my telegram channel

28,825 次观看 • 1 年前

i see some guy struggling with shodan ip extraction and showing long process here you go use this one click method and boom 💥

i see some guy struggling with shodan ip extraction and showing long process here you go use this one click method and boom 💥

24,997 次观看 • 1 年前

These three extensions will definitely help and save you time during your bug hunting process: Fake Filler, Code Formatter: js, css, json

These three extensions will definitely help and save you time during your bug hunting process: Fake Filler, Code Formatter: js, css, json

12,524 次观看 • 7 个月前

没有更多内容可加载