??????????
Community chat: https://t.me/hamster_kombat_chat_2
Twitter: x.com/hamster_kombat
YouTube: https://www.youtube.com/@HamsterKombat_Official
Bot: https://t.me/hamster_kombat_bot
Game: https://t.me/hamster_kombat_bot/
Last updated 1 month, 4 weeks ago
Your easy, fun crypto trading app for buying and trading any crypto on the market
Last updated 1 month, 3 weeks ago
Turn your endless taps into a financial tool.
Join @tapswap_bot
Collaboration - @taping_Guru
Last updated 3 days, 23 hours ago
**CONFIG DIRECTORY LISTING
HOST : momatt.com ENDPOINT: https://www.momatt.com/privacidad/config/?C=M;O=A SEVERITY: MEDIUM
IMPACT: LOW**
Weightwatchers Website
site : weightwatchers.comBug : Open Redirect
POC : click here
**AUTHENTICATION BYPASS
SITE: rechargezap.in BUG : Auth Bypass by OTP Bruteforce
SEVERITY: MEDIUM
IMPACT : HIGH**
? Privacy Alert ?
?Durex India spilled customers’ private order data.?
It’s concerning to hear that Durex India, a well-known brand trusted by many for intimate products, has exposed sensitive customer information, including full names, contact details, and order specifics. ?
? According to security researcher Sourajeet Majumder, hundreds of customers may have had their private data compromised due to insufficient security measures on Durex India's website.
In an era where privacy is paramount, especially for brands dealing with intimate products, this incident highlights the critical need for robust data protection. ?️
? Your Take: What are your thoughts on the importance of data privacy, especially for companies handling such personal information? How can brands rebuild trust after such incidents?
Let’s discuss in the comments below! ?
Business logic Website
Site : myprotein.co.in
Bug : price manipulation
Note : this is for testing purpose to learn About business logic.
**GIT FILE EXPOSED
HOST : jordanlynch.com ENDPOINT: https://jordanlynch.com/.git/ SEVERITY: HIGH
IMPACT : MEDIUM**
**GIT FILE DISCLOSURE
HOST: highstreetconsulting.com ENDPOINT: https://highstreetconsulting.com/.git/ SEVERITY: HIGH
IMPACT: MEDIUM
Do not Forget to React❤️ & Share this Message for More Content Like this
Thanks For Joining All**
PYTHA JS
This script extracts and validates JavaScript URLs from the Wayback Machine for a given domain. It checks the URL format and existence, fetches all URLs, filters JavaScript URLs, and validates them, saving the results to text files.
~ Extract All URL
~ Collect Only JS
~ Check whether they are valid .
Script: click here
Collect all JS files
PYTHA-WAYBACK
pythawayback is a Python tool for interacting with the Wayback Machine, allowing users to extract and analyze archived web pages for research and historical data analysis.
Link: click here
Get All Endpoint by just URL.
**FAMPAY
Site: drip.fampay.in BUG: Improper Account Validation
Hint: More bugs are there**
Community chat: https://t.me/hamster_kombat_chat_2
Twitter: x.com/hamster_kombat
YouTube: https://www.youtube.com/@HamsterKombat_Official
Bot: https://t.me/hamster_kombat_bot
Game: https://t.me/hamster_kombat_bot/
Last updated 1 month, 4 weeks ago
Your easy, fun crypto trading app for buying and trading any crypto on the market
Last updated 1 month, 3 weeks ago
Turn your endless taps into a financial tool.
Join @tapswap_bot
Collaboration - @taping_Guru
Last updated 3 days, 23 hours ago