LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

How I found a .env file and can access the whole server of mysql

5 months ago 47
BOOK THIS SPACE FOR AD
ARTICLE AD

JEETPAL

Hello

Today I will tell you How I found a .env file in website

so Let’s started

First we need to install a extension called DotGit

You can install it via chrome extensions store

Once you have successfully install it you will see the icon into the extension tab

Now you just have open your target and if there is any git directory it will pop a message

.git directory

You can simply click on pop message and redirect to git exposure directory

it also collect and save them so you can download them via the extension

once you have visited the webpage you will find some sensitive I found this

ENV file

From this I have username and password of the mysql server so I can access it but I didn’t access as this can be out of scope

after this I report it to security team and I get acknowledgement from from them

Acknowledge from team

Thank you for reading

Connect me on social Media via : https://linktr.ee/jeetpal2007

Read Entire Article
  3. How I found a .env file and can access the whole server of mysql

Related

How I Hacked NASA

How I Hacked NASA

IBM Fixes RCE Vulnerabilities in Data Virtualization Manager and Security SOAR

IBM Fixes RCE Vulnerabilities in Data Virtualization Manager and Security SOAR

Firefox and Windows Zero-Days Exploited by Russian RomCom Hackers: A Cybersecurity Wake-Up Call!

Firefox and Windows Zero-Days Exploited by Russian RomCom Hackers: A Cybersecurity Wake-Up Call!

Critical Vulnerabilities Discovered in Popular Anti-Spam Plugin for WordPress ️

Critical Vulnerabilities Discovered in Popular Anti-Spam Plugin for WordPress ️

Bugbounty Hunting: The First Step After Finding Your Target

Bugbounty Hunting: The First Step After Finding Your Target

Challenges and Pitfalls of Automating Bug Bounty Submissions with AI

Challenges and Pitfalls of Automating Bug Bounty Submissions with AI

Trending

1. Man City vs Feyenoord
2. From
3. Sporting vs Arsenal
4. Ola Gig electric scooter
5. Barcelona vs Brest
6. Mahindra XEV 9e Launch
7. Vodafone Idea share
8. Zimbabwe vs Pakistan
9. Zainab Ravdjee
10. Pakistan

Popular

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved