Bug Bounty Methodology

VPS Automation (using Screens)

While Doing Bug Bounty There are alot of tasks which we need to automate and they take alot of time so we need to keep them running while we exit from the VPS. For this Purpose we have Screens which i use most of the times

Make a New Screen

screen -S new-screen-name

e.g

screen -S programmerboy

now you will have a new terminal and that will be your screen terminal

Detaching the Screen

List the Screens

Get Back to Screen

after this you will be back in your screen

TMUX Usage

We can also use TMUX and that is very useful for bug bounty because we our processes can be running in the backend

Subdomains

Amass

Assetfinder

SubFinder

Gau

Waybackurls

Discover the IP Range

Visit this website to find the ip ranges

LogoHurricane Electric BGP Toolkitbgp.he.net

Alive Subdomains

HTTPX

Finding JS Files From a Domain

I always find for the Javascript files whenever i am given a domain and i use a tool called GolinkFinder

LogoGitHub - 0xsha/GoLinkFinder: A fast and minimal JS endpoint extractorGitHub

Nuclei

Nuclei Basic Command

Nuclei with Specific template

PreviousMethodologyNextXSS

Last updated