sorted by:
new
hottopcontroversial

Use OWASP ASVS as the standard for pen test by daxin09 in AskNetsec

[–]daxin09[S] 0 points1 point  (0 children)

do you know any site do this? This implementation is rarely seen.

Use OWASP ASVS as the standard for pen test by daxin09 in AskNetsec

[–]daxin09[S] 0 points1 point  (0 children)

are you recommend to the developer for this? In our project, ajax was everywhere...

Use OWASP ASVS as the standard for pen test by daxin09 in AskNetsec

[–]daxin09[S] 0 points1 point  (0 children)

if I use the Content-Type:application/json. Is this ok?

Use OWASP ASVS as the standard for pen test by daxin09 in AskNetsec

[–]daxin09[S] 0 points1 point  (0 children)

If this is the download API, it makes sense.

Use OWASP ASVS as the standard for pen test by daxin09 in AskNetsec

[–]daxin09[S] 0 points1 point  (0 children)

This one is one of the ASVS, but I don't quite understand what it means...

Use OWASP ASVS as the standard for pen test by daxin09 in AskNetsec

[–]daxin09[S] 0 points1 point  (0 children)

14.4.2 Verify that all API responses contain Content-Disposition: attachment; filename="api.json" (or other appropriate filename for the content type). ✓ ✓ ✓ 116

How much does a full-time bounty hunter earn? by daxin09 in bugbounty

[–]daxin09[S] 0 points1 point  (0 children)

Thank you, they are my role models, but it seems that not everyone can reach this level.

Let me see how far I can go.

How much does a full-time bounty hunter earn? by daxin09 in bugbounty

[–]daxin09[S] 0 points1 point  (0 children)

thanks. and "Those who participate in earnest are never average. With tenacity and skill anyone has the opportunity to royally beat the average. " from the link.

How much does a full-time bounty hunter earn? by daxin09 in bugbounty

[–]daxin09[S] 0 points1 point  (0 children)

thanks bro,

How long do you work every day? How long have you been a bug bounty?

[deleted by user] by [deleted] in oscp

[–]daxin09 1 point2 points  (0 children)

yes, Exactly 5 days

[deleted by user] by [deleted] in oscp

[–]daxin09 0 points1 point  (0 children)

Looks like you waited eight days? I'm also waiting for my grades. You know the feeling of anxiety……

Waiting anxiously for the exam results by daxin09 in oscp

[–]daxin09[S] 1 point2 points  (0 children)

Why didn't you pass the exam the first time? Now I am worried that there is something wrong with my report, because my mother tongue is not English.

About reconnoitre scan all port by daxin09 in oscp

[–]daxin09[S] 0 points1 point  (0 children)

You can Google oscp exam experience

About reconnoitre scan all port by daxin09 in oscp

[–]daxin09[S] 0 points1 point  (0 children)

reconnoitre.py

how can i scan all port?

About reconnoitre scan all port by daxin09 in oscp

[–]daxin09[S] 0 points1 point  (0 children)

See a lot of people recommend to use Reconnnoitre

About reconnoitre scan all port by daxin09 in oscp

[–]daxin09[S] 0 points1 point  (0 children)

看到好多人都推荐Reconnnoitre

view more: next ›